Certified ISO 27001 Lead Auditor - Live Online

Event Information

Share this event

Date and Time



Live Online

View Map

Refund Policy

Refund Policy

No Refunds

Friends Who Are Going
Event description



The Certified ISO 27001 Lead Auditor / Information Security Program Compliance Manager (CISPCM™) course is a dual certification course. This three-day information packed learning experience is designed to develop a level of competence to support the internal and external auditing and compliance management of an organizational Information Security Program based on ISO 27001. Drawing upon best practices from ISO 27001 and ISO 19011, students will learn the fundamental requirements to build internal compliance and audit programs and perform a certification audit.

To develop a well rounded understanding of the standard's expectations, students will be familiarized with the supplementary guidance offered by ISO using ISO 17021, ISO 27024 ,ISO 27002, ISO 27006, ISO 27007, and more.

Learning Objectives

  • Understand the requirements for information security compliance (including internal and external audit) mandated by the ISO 27001standard, including those mandated under legal and regulatory requirements, and general best practices.
  • Master the concepts, approaches, standards, methods and techniques required for the effective planning, design, development, implementation and maintenance of information security compliance.
  • Understand how to engage stakeholders in the process to secure their buy-in and support.
  • Develop the expertise to identify legal and legislative requirements mandated for your organization’s compliance.
  • Master the approach to collate and organize the high volume of requirements, and develop a structured compliance framework to build upon.

Who Should Take This Course?

  • Compliance Managers and staff seeking to incorporate Information Security within the scope of their holistic compliance program, and demonstrate required competence for the purposes of ISO 27001 certification.
  • Auditor Managers and Auditors seeking to incorporate Information Security within the scope of their holistic audit program, and demonstrate required competence for the purposes of ISO 27001 certification.
  • Information Security professionals and managers involved in any aspect of the development, roll-out or operational maintenance of an Information Security Program.
  • IT Managers and professionals, Project Managers, and consultants wanting to prepare and to support an organization in the implementation or maintenance of an Information Security Program.
  • Auditors who want to understand and be able to demonstrate competence in an Information Security Management System implementation
  • Persons responsible for information security or its conformity in an organization
  • Consultants looking to understand and support clients implementing and information security management system and specifically the strategy and policy & standards components.
  • Corporate / industrial / physical security specialists
  • Technical experts wanting to prepare for an Information Security management function or for an information security project management role
  • Attorneys supporting the legal aspects of an information security program


Day 1 - Introduction and Planning for the Audit and Certification of an Information Security Management System (ISMS) based on ISO 27001

  • Normative, regulatory and legal framework related to information security

  • Fundamental principles of information security

  • The ISO 27001 certification process

  • The Information Security Management System (ISMS)

  • Detailed presentation of the clauses 4 to 8 of the ISO 27001 standard

  • Fundamental audit concepts and principles

  • Audit approach based on evidence and on risk

  • Preparation of an ISO 27001 certification audit

  • Documenting of an ISMS audit

  • Conducting an opening meeting

Day 2 - Conducting an ISO 27001 Audit

  • Communication during the audit

  • Audit procedures: observation, document review, interview, sampling techniques, technical verification, corroboration and evaluation

  • Drafting test plans

  • Formulation of audit findings

  • Drafting of nonconformity reports

Day 3 - Concluding and ensuring the follow-up of an ISO 27001 audit

  • Audit documentation

  • Quality review

  • Conducting a closing meeting and conclusion of an ISO27001 audit

  • Evaluation of corrective action plans

  • Surveillance audit

  • Audit management program

  • Internal audit and second party audit

What You Get

Students will receive:

  1. a copy of all slides presented during the class;

  2. a certificate of completion awarding 27 Continuing Professional Development (CDP) units;

  3. a free Professional Membership in the Information Security Leadership Forum;
  4. A Student Information Package (SIP) with study tips and other helpful and insightful information for the course and exam; and

  5. An exam and certification application voucher.


  • Students will receive a discount code to activate their free membership with the Information Security Leadership Forum. This code is only valid for use by the registered student. Students must register and setup an account prior to the beginning of the course


Exams are administered and proctored online, following the training. Our online proctored exams are available 24 hours a day, seven (7) days week for your convenience.

After the course is complete, you will receive information by e-mail explaining the online exam proctoring process and the web page to log in, as well as other relevant information.

The exam is multiple choice and administered as an open book exam.

The exam must be taken within 30 days from the date of completion of the course.

Share with friends

Date and Time


Live Online

View Map

Refund Policy

No Refunds

Save This Event

Event Saved