World's #1 Bootcamp

> General information
> Learning objectives
> Educational approach
> Examination and certification

> What is ISO?

> The ISO/IEC 27000 family of standards

> Advantages of ISO/IEC 27001

> Certification process

> Certification scheme

> Accreditation bodies

> Certification bodies

> Information and asset

> Information security

> Confidentiality, integrity, and availability

> Vulnerability, threat, and impact

> Information security risk

> Security controls and control objectives

> Classification of security controls

> Definition of a management system

> Definition of ISMS

> Process approach

> ISMS implementation

> Overview - Clauses 4 to 10

> Overview - Annex A

> Statement of Applicability

Audit principles, preparation, and initiation of an audit

> Audit standards

> What is an audit?

> Types of audits

> Involved parties

> Involved parties

> Audit objectives and criteria

> Combined audit

> Principles of auditing

> Competence and evaluation of auditors

> Big data
> The three V’s of big data
> The use of big data in audits
> Artificial intelligence
> Machine learning
> Cloud computing
> Auditing outsourced operations

> Audit evidence
> Types of audit evidence
> Quality and reliability of audit evidence

> Audit approach based on risk

> Materiality and audit planning

> Reasonable assurance

> The audit offer

> The audit team leader

> The audit team

> Audit feasibility

> Audit acceptance

> Establishing contact with the auditee

> The audit schedule

> Objectives of the stage 1 audit
> Pre on-site activities
> Preparing for on-site activities
> Conducting on-site activities
> Documenting the outputs of stage 1 audit

> Setting the audit objectives
> Planning the audit
> Assigning work to the audit team
> Preparing audit test plans
> Preparing documented information for the audit

> Conducting the opening meeting

> Collecting information

> Conducting audit tests

> Determining audit findings and nonconformity reports

> Performing a quality review

> Behavior during on-site visits
> Communication during the audit
> Audit team meetings
> Guides and observers
> Conflict management
> Cultural aspects
> Communication with the top management

> Overview of the audit process
> Evidence collection and analysis procedures > Interview
> Documented information review
> Observation
> Analysis
> Sampling
> Technical verification

Audit test plans
Examples of audit test plans
Guidance for auditing an ISMS Corroboration
Evaluation
Auditing virtual activities and locations

> Audit findings
> Types of possible audit findings
> Documenting the audit findings
> Drafting a nonconformity report
> The principle of the benefit of the doubt

> Work documents

> Quality review

> Determining audit conclusions

> Discussing audit conclusions

> Closing meeting

> Preparing audit report

> Distributing the audit report

> Making the certification decision

> Closing the audit

> Submission of action plans by the auditee

> Content of action plans

> Evaluation of action plans

> Audit follow-up activities

> Surveillance activities

> Recertification audit

> Use of trademarks

> Managing an audit program

> Role of the internal audit function

> Main internal audit services and activities

> Audit program resources

If you fail the exam, you can retake it for free within 12 months.

Yes, ISO/IEC 27001 Lead Auditor training prepares you to perform an Information Security Management System (ISMS) audit using widely accepted audit principles, procedures, and techniques.

Fees for certification and exams are incorporated into the training course cost.