Value Process
Course Aim
The ISO/IEC 27001:2022 Lead Auditor Course, recognized by Exemplar Global, aims to equip participants with the knowledge and skills necessary to plan, conduct, manage, and report first-party (internal), second-party (supplier), and third-party (certification) audits of Information Security Management Systems (ISMS) in accordance with the requirements of ISO/IEC 27001:2022, the auditing principles of ISO 19011:2018, and the certification guidelines of ISO/IEC 17021-1:2015.
How will you benefit?
Knowledge of the following information security management principles and concepts:
- The Plan, Do, Check, Act (PDCA) cycle.
- The core elements of a management system and the interrelationship between top management responsibility, policy, objectives, planning, implementation, measurement, review, and continual improvement.
- Awareness of the need for information security;
- The assignment of responsibility for information security;
- Incorporating management commitment and the interests of stakeholders;
- Enhancing societal values;
- Using the results of risk assessments to determine appropriate controls to reach acceptable levels of risk;
- Incorporating security as an essential element of information networks and system;
- The active prevention and detection of information security incidents;
- Ensuring a comprehensive approach to information security management;
- Continual reassessment of information security and making of modifications as appropriate.
- Knowledge of the requirements of ISO/IEC 27001 (with ISO/IEC 27002) and the commonly used information security management terms and definitions, as given in ISO/IEC 27000, which may be gained by completing the Exemplar Global Certified ISO/IEC 27001:2022 Foundation (ISMS) Training course or equivalent.
Course Content
- Auditing Process Approach, incorporating the PDCA Cycle Auditing ISO/IEC 27001:2022 Standard requirements
- Documentation for Information Security Management Systems Auditing
- ISO 19011 standard requirements for auditing
- Auditor's Auditing Roles and Responsibilities
- Audit Planning- Audit Strategy
- Checklists and Non-Compliance Reports
- Reporting on Audits
- Meeting of the Final Team / Follow-up
- Audit / Verification Records
- Accreditation / Certification, as well as Auditor Registration
- Exercises, case studies, and so on
- Examining the course
- Auditor Registration and Accreditation
PDCA Cycle
Who Should Attend This Course?
Anyone who is or aspires to be:
- A Third-Party Assessor or Lead Assessor of ISO/IEC 27001:2022
- Responsible for undertaking audits of suppliers/subcontractors as per ISO/IEC 27001:2022
- Responsible for implementing internal audits and audit programs as per ISO/IEC 27001:2022
- Responsible for implementing the ISO/IEC 27001 series of standards
Course Outline
The course starts at 08:30 hrs. and ends approximately at 18:00 hrs. Maximum attendance 10 delegates per tutor.
Lunch Break:- 45 min.
Coffee Breaks:- Mid-morning & Mid-afternoon (Max. 10 min. each)
Pre-course information is sent to delegates approximately a week prior to the beginning of the course
Course Facilitators
All course facilitators are highly qualified and experienced both in training and assessment of Information Security Management System. We strongly believe that the experience in Information Security Management System Assessment and Training skills is a right combination to deliver a practical training course. They are selected on their ability to make BSCIC courses both practical and enjoyable.
Get ISO/IEC 27001:2022 Training from us
Apply Now
BSCIC Management Systems Certification
Office # M-30, Al Gurg Building, Umm Hurair Road,
AI Karama, Dubai, United Arab Emirates
For ISO Certification:
For ISO Training:
Contact Us
© 2025 BSCIC Management Systems Certification. All rights reserved