Information Security Lead Auditor Course

It is important to change the thinking and recognize that there is every opportunity to consider information security as strategic tools for competitive advantage, increased shareholder value and better management of resources.  Such change does not require new technical know-how or security solutions, but rather a new way of assessing them.

Come to attend our highly rated IRCA[2] Registered ISMS Lead Auditor training course so that you can acquire the knowledge and skills required to assess the conformance of an organisation’s ISMS to ISO/IEC 27001.  In addition, you will gain the understanding of associating the ISMS elements to the key of a successful business. 

This 5 day Information Security Management System (ISMS) Lead Auditor training courses provide information security professionals with the knowledge and skills required to assess the conformance of an organization's information security management system to ISO/ IEC 27001:2013.

This course is accredited by International Register of Certified Auditors (IRCA) with the instruction, course content, course duration, examination and administration regulated by IRCA. Delegates should note that evening work is required during the course and there will be a two and half hour examination conducted on the final day of the course.

• having pre-class reading material to gain initial understanding, in-class to provide an in-depth explanation with hands-on techniques and categorization of information and, post-class learning reinforcement.

• having the material geared towards audit preparation, verification techniques as well as audit follow-up with information security risk management as the focus.

• having 14 competency exercises and 8 competency tests – competency exercises allow delegates to gain confidence in performing a task while competency tests, a combination of skills learnt from competency exercises, allows delegates to validate the skills learnt from the training.

Upon successful completion, you will be;

• Equipped with knowledge and skills required to perform audits of Information Security Management Systems (ISMS) against the ISMS standards.
• Satisfy the training requirements for initial certification as an IRCA ISMS auditor.
• Increase your credibility through gaining international recognition.
• Improve your resume and help to increase earning potential.

• ISO/IEC 27001 ISMS Overview

• Understanding ISO/IEC 27001 Fundamentals

• Interpreting ISO/IEC 27001 ISMS Requirements

• ISO 19011 and ISO/IEC 17021 Audit Programme Overview

• Understanding the Audit Process

• Initiating and Preparing an Audit from ISMS Programme Perspective

• Conducting an Audit from ISMS Programme Perspective

• Reporting, Completing and Follow-Up an Audit

• Audit Programme Coordinators who wish to set-up a audit programme within their Organization as recommended by ISO 19011.

• Senior and Middle Managers who wish to better understand the philosophy and the requirements of Information Security Management Systems (ISMS), and strategizing the implementation.

• Managers and Professional Engineers who need to understand the implementation requirements of ISMS program and be equipped with the ability to select credible consultants.

• Existing auditors who wish to expand their auditing skills into the field of ISMS.

• Professionals who wish to provide advisory on the ISO 27001 ISMS certification expectation.

Before engaging this course, delegates are expected to have the following prior knowledge:

He has extensive experiences in ISMS training and consultancy for clients in Government Agencies and all other industrial sectors ranging from Finance, Telecommunications, Manufacturing, Automotive, Energy, Information Technology to Food and Beverages, Education and Electronics. He has consulted various Global 2000 companies for ISMS including the world largest financial new agency, world largest automotive, world second largest IT outsourcing and regional largest telecommunication provider; just to name a few and his experience spans 10 countries over 4 continents. With his in-depth knowledge of information security, Mr You also patented a revolutionary risk assessment methodology that has been accepted and globally adopted in some of the Global 2000 companies.