Course Description:

- Understand the purpose of the Information Security Management System and the processes for creating, implementing, maintaining, and continuously improving the ISMS.

- Apply the PDCA method to the above processes.

- Understand the role of internal auditors and related skills.

- Understand the audit concepts and principles, and plan, execute, and report audit results according to the ISO19011 standard.

Who needs to learn the ISO/IEC 27001:2022 Lead Auditor Course?

Information security professionals: Individuals with professional knowledge and experience in the field of information security, including information security managers, information security consultants, ISMS member representatives, corporate leaders and managers, internal auditors, and other relevant personnel. (Icons similar to the following figure can be used for annotation)

Training Certification Value:

For Individuals:

Professional Competence Recognition: By obtaining the ISO/IEC 27001:2022 Lead Auditor certification, individuals can enhance their professional knowledge and skills, and improve their competitiveness in the field of information security.

Career Development: Individuals with the qualification of ISO/IEC 27001 Lead Auditor have broader employment opportunities in the field of information security management and can hold leadership and management positions in the ISMS.

For Enterprises:

Construction of Information Security Management System: ISO/IEC 27001:2022 Lead Auditor training can help enterprise internal personnel better understand the requirements of the ISO/IEC 27001 standard, thereby more effectively establishing, implementing, and maintaining the information security management system.

Improving Internal Audit Efficiency and Quality: Internal staff holding the ISO/IEC 27001:2022 Lead Auditor certification can improve the efficiency and quality of internal audits, more timely identify problems in the management system, enhance the enterprise's credibility in external certification bodies and customers, and improve compliance and market competitiveness.

Why Glorytime?

Glorytime Technology has gathered a large number of excellent talents who are well versed in market operation rules, proficient in enterprise information management, especially in information security, cloud security, business continuity management, IT management and maintenance consulting, and CMMI consulting and assessment, and have a deep understanding and rich practical experience in domestic enterprises.

Course Objectives and Syllabus:

The course will be taught by experienced ISO/IEC 27001:2022 Lead Auditors, who will share their practical experience in internal audits for various types of companies and institutions. In this course, students will learn the systematic knowledge and related skills of the information security management system. The course objectives are as follows:

- Understand the overview and structure of the ISO/IEC 27001:2022 standard, as well as the changes and updates of the version.

- In-depth interpretation of the ISO/IEC 27001:2022 standard and related requirements, mastering the key elements and methods of information security management system construction.

- In-depth study of the role and responsibilities of internal auditors.

- Learn the concepts and outlines of ISO 19011:2018 and apply them to internal audit practice.

- Practical operation of each stage of the internal audit.

- Preparation and presentation of internal audit reports.

- Learn how to plan audits.

- Learn to initiate audits and hold the opening meeting.

- Understand the responsibilities of the lead auditor.

- Master communication skills in the audit.

- Master the latest internal audit skills and apply them to appropriate scenarios.

- Understand on-site activities.

- Prepare audit conclusions and hold the closing meeting.

Course Syllabus:

The following is the detailed course syllabus for the ISO 27001:2022 Lead Auditor training:

Module 1: ISO/IEC 27001 Overview and Background

- Definition and purpose of the Information Security Management System (ISMS)

- History and development background of the ISO/IEC 27001 standard

- Overview of international standards and regulations related to information security

Module 2: ISO/IEC 27001 Standard Requirements

- Structure and elements of the ISO/IEC 27001:2022 standard

- Detailed explanation and understanding of the main standard requirements

- Risk management methods and processes

Module 3: Audit Principles and Skills

- Basic principles and concepts of the audit process

- Role and responsibilities of auditors

- Audit methods and techniques

Module 4: Audit Preparation and Planning

- Determination of audit scope and objectives

- Development and adjustment of audit plans

- Audit resource and time management

Module 5: Audit Execution

- Auditor behavior and communication skills

- Collection of evidence and materials

- Inquiry skills and practice

Module 6: Audit Reporting and Records

- Recording and summarizing audit results

- Identification and classification of non-conformities

- Techniques for writing audit reports

Module 7:  Follow-up Audits

- Handling and tracking of non-conformities

- Follow-up activities and measures after the audit

- Continuous improvement and suggestions

Module 8: ISO/IEC 27001 Certification Process

- Certification process and requirements of certification bodies

- Preparation and execution of certification audits

- Follow-up activities and maintenance after certification

Module 9: Case Analysis and Practice

- Analysis and discussion through actual cases

- Conducting mock audit exercises

- Sharing audit experience and lessons

Module 10: Exam Preparation and Mock Exam

- Preparation and skills for auditor exams

- Implementation and analysis of mock exams

- Feedback and summary after the exam

These course modules aim to provide students with comprehensive ISO 27001:2022 Lead Auditor training, covering all the content needed for theoretical knowledge, practical skills, and certification preparation.

Exam Instructions:

1. Question type: 50 multiple-choice questions, 40 minutes for the exam, pass with more than 25 correct answers;

2. Examination method: Online computer-based test

Course Schedule:

Location: To be determined (can participate online from different locations)

Registration Contact:

Contact our team members:

Mr. Tang 

Mobile phone: 18516731683

Email: toly.tang@glorytime.cn