ISO 27001 auditor training and ISO 27001 standardQMS Auditor/Lead Auditor Training Course based on ISO/IEC 27001:2013


This intensive, challenging and highly interactive and practical course is designed to develop delegates' skills to conduct Information Security Management (ISM) System audits in order to:

  • Promote their own organization's performance and identify opportunities for improvement
  • Objectively assess a company/supplier against third party standards
  • Contribute to the requirements to register as an IRCA Lead Auditor.

IRCA-singleOur course is approved by the UK International Register of Certified Auditors (IRCA Reference No: A17293) and meets the training requirements for individuals seeking registration as a Lead Auditor under the IRCA Auditor Registration Scheme.

ISO 27001 Course Objectives

Our course will equip delegates with an in-depth knowledge of the requirements of ISO/IEC 27001 and develop their competence to assess an organisation's ability to manage risk and provide essential ISM system controls.

Familiarity with ISO/IEC 27001:2013 is necessary for a full understanding of the principles developed in this course.

Key Skills / Learning Objectives

Through the combination of interactive tutorials and workshops, our course will enable the delegates to:

  • Apply the requirements of ISO 27001 to the specific processes and needs of a company as well as generally.
  • Assess compliance of an organization to meet their company's own internal or external (e.g. Certification Body) requirements.
  • Plan, develop and implement an internal audit process appropriate to their organization and create an environment to drive excellence.
  • Conduct audits to professional criteria with confidence and identify how third parties view the ISM system and its compliance for certification.
  • Achieve the formal training requirements to allow progression to becoming an IRCA Registered Lead Auditor

ISO 27001 Course Outline (Full Course Agenda PDF)

  • Background and overview of the ISO/IEC 27001 and associated information security Standards
  • An introduction to auditing and implementing an audit system
  • Management's role in reviewing risk and the effectiveness of the overall ISM System
  • Principles of auditing, the audit cycle and the auditor's role in the process
  • Auditing skills and techniques:
    • Planning - use of checklists, resources and timing
    • Selection of audit teams
    • Interviewing and evaluation of information and findings
    • Observation - objective evidence
    • Evaluating the significance of nonconformities
    • Communicating and presenting audit reports
    • Corrective actions and effective follow-up programmes
    • Effective improvement - planning, monitoring and results
  • Accreditation and certification activities
  • Sources of information and further development

Who Should Attend?

  • Individuals who want to become ISM System Registered Lead Auditors.
  • Individuals leading their company to ISO/IEC 27001 registration.

Booking and ISO 27001 Course Fees

Delegates successfully completing the course and exam will be awarded an IRCA registered certificate.

Fees include:

  • Registered IRCA certificate verifying attendance and completion of course
  • Delegate Manual, including substantial reference information
  • Training provided by qualified and experienced tutors with extensive practical management auditing experience across a variety of manufacture and service industries
  • Lunch and refreshments during the day
  • Residential accommodation and evening meal (4 nights)

More Information

Training course description in PDF
ISO27001 course dates and venues
Request further information
In-House training
Associated courses
What our customers say

Print page
Check course dates and book