ISO/IEC 27001:2005 Lead Auditor Course
Growing scrutiny toward industry’s Information Security Management has made conformance with ISO/IEC 27001: 2013- a voluntary, internationally recognized Information Security Management Systems (ISMS) standard - more important than ever. Competence of Lead auditors is the most important factor for ensuring effective implementation of the Information Security Management System. Information Security management system auditors require understanding of the standard, stake holder requirements, statutory requirements, skill of auditing, and finally the application of these in most complex situations.
Who Should Attend?
While no formal pre qualification is necessary to attend this course, those delegates with previous exposure to information security management system will have an added advantage. As the training courses will be in English, competency in written and spoken English is a minimum requirement to understand this course. Course is best suited for top & middle management quality professionals like top management, management representatives, consultants, system implementers, HODs, internal & external auditors.
To gain an in-depth and practical understanding of the ISO/IEC 27001:2013 audit requirements, with particular reference to audit management and consistent report writing.
This course is designed to:
Explain the purpose of an Information Security Management System (ISMS) and explain the processes involved in establishing, implementing, operating and monitoring, reviewing and improving an ISMS as defined in ISO 27001, including the significance of these for ISMS auditors;
Explain the purpose, content and interrelationship of ISO 27001, ISO/IEC 17799 and ISO 19011, ISO/IEC TR 13335 Parts 3 and 4 (GNITS), EA 7/03 and the legislative framework relevant to a ISMS.
Explain the role of an auditor to plan, conduct report and follow up an ISMS audit in accordance with ISO 19011;
The role of an auditor to plan, conduct, and follow up an ISMS audit in accordance with ISO 19011 and the guidance criteria contained in EA 7/03.
Develop skills to interpret the requirements of ISO/IEC 27001 & EA 7/03 in the context of ISMS audit and undertake the role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011 Develop skills to interpret the requirements of ISO/IEC 27001 & EA 7/03 in the context of ISMS audit and undertake the role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011