Build your career as a lead auditor, lead a team of auditors and gain the skills to achieve compliance with ISO 27001 with this five-day course. By attending and passing the course exam, you will achieve the ISO 27001 Certified ISMS Lead Auditor (CIS LA) qualification. PCI SSC has indicated that it accepts GASQ certifications in relation to the IBITGQ courses as meeting the requirements of an individual applying to become a Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA).
“I can recommend this course to anyone who needs an ISO 27001 Lead Auditor qualification. The trainer, exam and lessons are amazing. As a trainer myself, I have to say this is one of the best courses I have ever attended.” - Michael Wilson, IAL Consultants
Worldwide locations | Europe - See all UK training venue details.
Other ways to learn | Live online - In-house
Pay by purchase order | Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account. Apply online today or call our training sales team on +44 (0)333 800 7000.
This fully accredited course equips you with the skills to conduct second-party (supplier) and third-party (external and certification) Information Security Management System audits. It covers the best-practice audit methodology based on ISO 19011 allowing you to master audit techniques.
Packed full of hands on practical exercises you will gain the skills and expertise needed to competently manage an ISMS audit program. Build your career as a lead auditor, lead a team of auditors and achieve compliance with ISO 27001.
At the end of the course you sit the ISO 27001 Certified ISMS Lead Auditor exam. You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the GASQ successful candidate register.
This course is also accredited by the Institute of Information Security Professionals (IISP), and satisfies the IISP Skills Framework requirements at Level 1: A1, A3, A7, C1, C2, D2, E3, F2, H1 and H2; and at Level 1+: A2, A4, A5, A6, B1, B2, D1, E1, E2, F1 and G1
Need this information to hand? Why not download our product summary with all essential course information you need for budget requests. Download now >>
Extremely engaging course which was very well delivered by Arnie! I was really impressed with not only his extensive knowledge of the ISO 27001 Standard, but his breadth of real world experiences to provide clear interpretations of each particular aspect of audit. Would 100% recommend if you're in an audit role!
- Joe Edwards, Operational Audit Officer - Office for National Statistics
Designed by IT Governance Director Steve Watkins, who is also a contracted technical assessor for the United Kingdom Accreditation Service (UKAS), where he helps with the assessment of certification bodies, enabling them to award ISO 27001 certificates of conformity.
Real-world practitioners show you how to tackle an ISMS project from start to finish.
An experienced ISO 27001 auditor and practitioner will explain how to lead an audit from start to finish.
Aligned with the best-practice ISO 19011:2011 (Guidelines for auditing management systems) audit methodology.
Gain experience of practical application of the audit process to ISO management systems through discussion and role play.
You receive market leading training at an extremely competitive price.
99%
of delegates passed first time
92%
were happy with the pace of the course
94%
found the course content to meet their expectations
96%
agreed the course content was relevant
This course is aimed at individuals who want a globally-recognised ISO 27001 lead auditor qualification to further their careers, and at managers who are responsible for the implementation and maintenance of an ISO 27001-compliant ISMS.
Gordon was an excellent trainer throughout the week. I had a bit of a learning blip on day 2 but with his help and the group getting involved I soon managed to get back on track with a good pass at the end of the week…. Gordon clearly has a mass of knowledge and experience that he shared with the course. Very engaging and he is no doubt one of the reasons that so many people passed.
- L Jones, Sutton SP Ltd
This course will cover:
99%
found the trainer was engaging
98%
thought the trainer had good knowledge of the subject
97%
thought the trainer answered questions adequately
98%
thought trainer supported individual requirements
The exam is an online exam. You will need to bring a ‘pop-up enabled’ laptop/tablet to the venue. Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.
This course is part of our training programme. You can download your training pathway below to find your next recommended courses.
Save 15% when you purchase the Certified ISO 27001 Lead Implementer and Lead Auditor Combination Training Course. Achieve both the ISO 27001 Certified Lead Implementer (CIS LI) and Lead Auditor (CIS LA) qualifications in just 8 days.
Day 1: 10:00 am – 5:00 pm
Day 2: 9:15 am – 5:00 pm
Day 3: 9:15 am – 5:00 pm
Day 4: 9:15 am – 5:00 pm
Day 5: 9:15 am – 1:30 pm
London and Manchester.
This course is equivalent to 35 CPD/CPE points.
“James was extremely helpful, motivating and provided a great learning environment. He was very engaging and made the subject much easier to digest. By far the best trainer I have experienced.”
- Zoe, Information Assurance Consultant
Attendees take the ISO 27001 Certified ISMS Lead Auditor (CIS LA), ISO 17024-certificated, exam set by IBITGQ at the end of the course. This is a 90-minute multiple-choice online exam, consisting of 40 questions. Candidates need to achieve a minimum of 65% to pass. There is no extra charge for taking the exam.
ISO 27001 Certified ISMS Lead Auditor (CIS LA).
Yes, if you are unsuccessful on the first attempt you can retake the exam for an additional fee. You can email us to schedule the retest for the exam.
"Sharon was absolutely wonderful. Clearly incredibly skilled, knowledgeable and experienced. Excellent presentation style, brilliant communication of at times heavy content and a great knack for keeping the audience awake and engaged, (difficult to do with PowerPoint-centric training). Great laugh and very grateful for her efforts. Highly commend and recommend.”
- Richard, Senior Security Risk Analyst
While there are no formal entry requirements for this course, we assume that delegates will have gained a good knowledge of ISO 27001 through practical experience, through reading or attendance at such courses as theISO 27001 Certified ISMS Foundation training course or the ISMS Certified ISMS Lead Implementer course.
Delegates will need to have their own copies of the ISO/IEC 27001:2013 and ISO 27002:2013 standards for use during the course.
We strongly recommend you purchase and read the standard prior to attending the course:
We also recommend that you purchase and read the following textbooks:
Delegates must bring a form of photographic ID with them as the invigilator my request to check it prior to the exam.