Brought to you by the team that led the world’s first ISO 27001 implementation project, the Certified ISO 27001 ISMS Lead Auditor Training Course will teach you the skills to conduct second-party (supplier) and third-party (external and certification) ISMS audits.
The Certified ISO 27701 PIMS Lead Auditor Training Course will teach you how to extend an ISO 27001-compliant audit programme and conduct PIMS audits against ISO/IEC 27701, in line with data protection regimes such as the GDPR (General Data Protection Regulation) and DPA (Data Protection Act) 2018.
Aligned with the best-practice ISO 19011:2018 (Guidelines for auditing management systems) audit methodology.
An experienced ISO 27001 auditor and practitioner will explain how to lead an audit from start to finish.
Choose whether you attend Live Online or in person at one of our training venues in Ely or London.
Receive market-leading training at a highly competitive price.
Designed by IT Governance Director Steve Watkins, a contracted technical assessor for UKAS, where he helps with the assessment of certification bodies.
Gain experience of the practical application of the audit process to ISO management systems through discussion and role-play.
This course is aimed at individuals who want globally recognised ISO 27001 and ISO 27701 lead auditor qualifications to further their careers. It is designed for managers responsible for auditing an ISO 27001 ISMS and ISO 27701 PIMS, such as:
Find out how the Certified ISO 27001 ISMS and ISO 27701 PIMS Lead Auditor Combination Training Course will help you enhance your knowledge and start or boost your career.
The Certified ISO 27001 ISMS Lead Auditor (CIS LA) and Certified ISO 27701 PIMS Lead Auditor (CPI LA) courses are essential components of the following learning paths:
You will need a laptop for the duration of your course and exam. Our course materials include an interactive PDF and an online quiz tool for knowledge testing. Full details on how to access each exam are provided by email 1–2 days before the exam dates.
Day 1: 9:30 am – 5:00 pm
Day 2: 9:30 am – 5:00 pm
Day 3: 9:15 am – 5:00 pm
Day 4: 9:15 am – 5:00 pm
Day 5: 9:15 am – 4:30 pm
Day 6: 9:30 am – 5:00 pm
Day 7: 9:15 am – 5.00 pm
There are no formal entry requirements for this course, but participants should have a good knowledge of ISO 27001. This could be obtained through practical experience, through reading, or attending the Certified ISO 27001 ISMS Foundation Training Course or Certified ISO 27001 ISMS Lead Implementer Training Course.
Participants will need to have their own copies of the ISO 27001, ISO 27002:2013 and ISO 27701:2019 standards for use during the course.
We strongly recommend you purchase and read the following standards before attending the course:
We also recommend that you purchase and read the following textbooks:
Candidates will take the following ISO 17024-certificated IBITGQ exams:
Both exams consist of 40 multiple-choice questions, with a pass mark of 75%. There is no extra charge for either exam.
This course is equivalent to:
49
CPD points
The Certified ISO 27001 ISMS Lead Auditor course is accredited by IBITGQ (International Board for IT Governance Qualifications) and CIISec (Chartered Institute of Information Security). It satisfies the CIISec requirements at Level 1: A1, A3, A7, C1, C2, D2, E3, F2, H1 and H2; and at Level 1+: A2, A4, A5, A6, B1, B2, D1, E1, E2, F1 and G1.
IBITGQ (International Board for IT Governance Qualifications) is a personnel certification body that certifies individuals in the field of IT governance.
IBITGQ is accredited to the ISO/IEC 17024:2012 standard (Conformity assessment – General requirements for bodies operating certification of persons) by IAS (International Accreditation Service). ISO 17024 is a global, industry-recognised benchmark, and qualifications accredited to this standard are recognised and highly valued by employers throughout the world.
You can demonstrate your professional and practical knowledge and expertise by registering your qualifications on the IBITGQ/GASQ successful candidate register.
The PCI SSC (Payment Card Industry Security Standards Council) has indicated that it accepts GASQ certifications in relation to the IBITGQ-accredited courses as meeting the requirements of an individual applying to become a PCI DSS (Payment Card Industry Data Security Standard) QSA (Qualified Security Assessor).
Provisional exam results will be given immediately after completing the exams. Confirmed results will be issued within ten working days with your certificate to your email address.
Candidates must have a form of photographic ID with them as the invigilator may request to check it before the exam.
Yes. If you are unsuccessful on the first attempt, you can retake the exam for an additional fee. You can email us to schedule the retest.
To support your continued professional development, it is essential that you maintain an adequate level of current knowledge associated with an ISO 27001 Lead Auditor. To demonstrate this competency to employers and other key stakeholders, you are required to recertificate your IBITGQ qualification at regular intervals.
Individuals who are awarded the Certified ISO 27001 ISMS Lead Auditor (CIS LA) qualification are required to recertificate after three years.
Candidates can undertake a recertification exam any time from one month before or two months after the expiry date (months 35–38) of their certificate. Please see the IBITGQ exams page for further details. After this period, candidates can take the standard ISO 27001 Certified ISMS Lead Auditor (CIS LA) exam at any convenient time.
Wherever you are in the world, you can now attend an IT Governance online course, and get the full benefit of a classroom session.
To make your life as easy as possible, we offer three ways to attend an instructor-led course:
Our instructor-led courses are hosted at professional training centres located in major cities across the UK.
Our instructor-led Live Online courses are hosted and delivered live by one of our expert trainers.
Our instructor-led Classroom / Live Online courses give you the flexibility of attending a classroom course, either in person or by joining the classroom course online.
Find out more about the benefits of learning from anywhere
“Sharon was a delight, very clear instruction, good pace and the slides were well structured. Kept the training interesting with relevant examples and considering it was virtual found it very enjoyable! ”
- Nicky Keeley, Head of Cyber Security Oversight, Civil Aviation Authority
"Thank you Preston! I really enjoyed the class. Having been a trainer for almost 20 years, I think you are at your best when you are sharing your experiences with Auditing. I appreciated the other participants, and the WebEx format.”
- Mark Stallling, Justice Trax
“Max was an excellent trainer, always professional, but also approachable. Connecting with attendees remotely is always more difficult than in a classroom environment, but again Max was excellent in all respects. I will definitely complete more courses with ITG and promote it to my peers.”
- Richard Jones, Programme and Security Consultant, Corporate Growth Solutions