Skip to Main Content
This website uses cookies. View our cookie policy
Close
United Kingdom
Select regional store:
Spend And Save! Receive A Free Corporate Gift Card Up To The Value Of £100 This December. Find Out How >>
ISO 27001 Information Security Training Package No.2 Combination Course

ISO27001 Lead Implementer and Lead Auditor Combination Course

SKU: 3140
Overview:

This fully certified 7.5-day training course covers all the activities required to plan, implement and audit an ISO 27001-compliant information security management system (ISMS). Learn the skills to plan, execute and report second-party (supplier) and third-party (external and certification) audits.

Qualification:

Achieve the ISO27001 Certified Lead Implementer (CIS LI) and Lead Auditor (CIS LA) qualifications. Exams included in course. This course qualifies for 56 CPD/CPE points.

Course duration:

8 days – CIS LI 3 days & CIS LA 5 days

UK locations:

Birmingham, Edinburgh, London, Manchester. See venue details.

Worldwide locations:

Other ways to learn:
Save 15% when you purchase our ISO 27001 Lead Implementer and Lead Auditor combination course. (Discount will be automatically applied)

How to Book:

Simply book online to receive your booking confirmation and full joining instructions within 48 hours. We accept purchase orders from local authorities, government departments and other public-sector organisations, and will consider account facilities for large corporate customers. See our payment options page for details.

Book today

ISO27001 Certified ISMS Lead Implementer

ISO 27001 Certified ISMS Lead Implementer Training Course
Price: £1,795.00
ex vat

ISO27001 Certified ISMS Lead Auditor Training Course

ISO 27001 Certified ISMS Lead Auditor Training Course
Price: £1,000.00
ex vat

Description

Course overview


The ISO27001 Lead Implementer and Lead Auditor Combination course

ISO27001 Certified ISMS Lead Implementer ISO27001 Certified ISMS Lead Auditor
The flagship of our ISO27001 Implementation Learning Path, this Advanced-level course is focused on developing the in-depth knowledge and skills required to implement and deliver an ISMS in any organisation. This course is designed to develop practical knowledge and auditing skills based on the core audit requirements as outlined in the ISO 19011 standard. For implementation managers, understanding the requirements and the methodology employed by an external ISO 27001 auditor are crucial to the success of any ISO 27001 implementation project.
Download course data sheet Download course data sheet

The ISO 27001 Lead Implementer and Lead Auditor Combination course benefits

Designed by experts

Designed by the team that led the world’s first successful ISO 27001 implementation project.

Delivered by professionals

Real-world practitioners show you how to tackle an ISMS project from start to finish.

Hands-on study

Participate in group discussions, practical exercises and case studies throughout the course.


Who should attend this course?

Individuals who want a globally-recognised ISO 27001 lead auditor qualification to further their careers, and at managers who are responsible for the implementation and maintenance of an ISO 27001-compliant ISMS.

  • Job titles:
    • IT/ Information Security Consultant
    • IT/ Information Security Manager
    • IT/ Information Security Officer
    • IT/ Information Security Project Manager
    • Cyber security consultant
    • Head of IT
    • CISO (Chief Information Security Officer)
    • GDPR Consultant
    • Information security analyst
    • ISMS Manager
    • Network manager
    • Compliance Auditor
    • Internal Auditor
  • MoD ELCAS Funding
    • This course is eligible for funding under the MoD ELCAS scheme and is suitable for serving members of the MoD or service leavers who wish to develop a career in information security management.

Why choose IT Governance for your training needs?

IT Governance is internationally recognised as the authority on ISO 27001. Our team led the world’s first ISO 27001 certification project, and since then we have trained more than 7,000 professionals on information security management system (ISMS) implementations and audits. 

Course details


What does the ISO27001 Lead Implementer and Lead Auditor Combination course cover?

  • The key concepts, principles and main requirements of ISO/IEC 27001:2013.
  • The terms and definitions used in the Standard, including risk and options for risk assessments.
  • How to interpret the requirements of ISO/IEC 27001:2013 to determine the scope of your ISMS.
  • How to secure senior management commitment by building a compelling business case.
  • How to structure and manage your ISO 27001 project.
  • How to review and map your existing controls to Annex A of ISO 27001.
  • The importance of the Statement of Applicability (SoA), and justifications for inclusions and exclusions.
  • How to carry out an information security risk assessment – the core competence of information security management.
  • How to develop a management framework, write policies and produce other critical documentation.
  • The importance of staff, an effective communication strategy and general awareness training.
  • The key elements of management review.
  • How to prepare for your ISO 27001 certification audit and ensure you that you pass first time.
  • How to manage and drive continual improvement under ISO 27001. 
  • An overview of the audit process used by certification bodies.
  • Best-practice audit methodology based on ISO 19011.
  • How to establish, maintain and manage an audit programme.
  • How to plan, conduct, report, summarise and follow-up on an audit.
  • Effective interviewing techniques and observation skills.
  • How to use audits to identify nonconformities and ensure appropriate corrective action is taken.
  • How the audit process is used in first, second and third-party audits.

Course agenda:

Course agenda (day 1-3):

  • Project mandate
  • Project initiation
  • ISMS initiation
  • Management framework
  • Baseline security criteria
  • Risk management
  • Implementation
  • Annex A controls
  • Measure, monitor, review and improve
  • Certification
     

Course agenda (day 4-8):

  • Purpose and benefits of audits
  • Role of auditors
  • Role of standards in audits
  • Audit terms and definitions
  • Principles of auditing
  • Managing an audit programme
  • Performing an audit
  • Observing and listening
  • Reporting and Summarising Audit Findings 
  • Conducting Audit Follow-up 
  • Competence and Evaluation of Auditors 
  • Accredited Certification Audit specifics 
  • Auditing an Information Security Management System to ISO 27001:2013

What’s included in this course?

  • A professional training venue with lunch and refreshments;
  • Full course materials (digital copy provided as a PDF file);
  • The ISO 27001 Certified ISMS Lead Implementer exam; 
  • The ISO 27001 Certified ISMS Lead Auditor exam; and
  • A certificate of attendance.

What equipment should I bring?

The exam is an online exam. You will need to bring a ‘pop-up enabled’ laptop/tablet to the venue. Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.


Course duration and times

Day 1: 9:30 am–5:00 pm
Day 2: 9:00 am–5:00 pm
Day 3: 9:00 am–5:00 pm
Day 4: 10:00 am – 5:00 pm
Day 5: 9:15 am – 5:00 pm
Day 6: 9:15 am – 5:00 pm
Day 7: 9:15 am – 5:00 pm
Day 8: 9:15 am – 1:30 pm


CPD/CPE points

This course is equivalent to 56 CPD/CPE points.

The CIS LI qualification is acknowledged by the Payment Card Industry Security Standards Council (PCI SSC) as an approved qualification that meets the requirements of an individual applying to become a Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA).


How much does the ISO27001 Lead Implementer and Lead Auditor Combination course cost?

The course costs £2,375.75 ex VAT.

Exams and qualifications


ISO27001 Lead Implementer and Lead Auditor Combination exams

Attendees sit the online ISO27001 CIS LI examination at the end of day 3 – a 90-minute, multiple-choice, ISO 17024-certificated exam set by  IBITGQ. They also sit the online ISO 27001 Certified ISMS Lead Auditor (CIS LA) examination– a 90-minute, multiple-choice, ISO 17024-certificated exam set by IBITGQ at the end of the course. There is no extra charge for taking these exams.


What qualifications will I receive?

ISO 27001 Certified ISMS Lead Implementer (CIS LI) and ISO 27001 Certified ISMS Lead Auditor (CIS LA)


How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
  • Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.

Can exams be retaken?

Yes, if you are unsuccessful on the first attempt you can retake the exam for an additional fee. You can email us to schedule the retest for the exam.

Prerequisites


Are there any prerequisites for this course?

There are no formal entry requirements but it is assumed that you have taken the ISO27001 Certified ISMS Foundation training course or you have a good working knowledge of ISO 27001 gained through practical experience.


Is there any recommended reading?

We strongly recommend you purchase and read the standard prior to attending the course:

We also recommend that you purchase and read the following textbooks:


Do I need to bring proof of identity?

Delegates must bring a form of photographic ID with them as the invigilator my request to check it prior to the exam.


“I can recommend this course to anyone who needs an ISO 27001 Lead Auditor qualification. The trainer, exam and lessons are amazing. As a trainer myself, I have to say this is one of the best courses I have ever attended.”

Michael Wilson, IAL Consultants

"An excellent course. A perfect balance between 'teaching’ and active group participation. Course content was both comprehensive and easy to digest, such that I have already been able to put the learning immediately into practice within my organisation.”

Georgina Smith, Appleton Consultants

“My trainer provided excellent practical advice on how to achieve ISO27001 compliance for my data centre services company. I was particularly impressed by the Lead Auditor course that outlined the detailed requirements and approach taken by certification bodies when they perform an audit. Needless to say – we subsequent passed our 27K audit at the first attempt!”

Gary Willet – Information Security Manager

Customer Reviews

(0.00)stars out of 5
# of Ratings: 0
Loading...