ISO 27001 Lead Auditor

Course Description A lead auditor is the one who is responsible for leading the audit team in an

organization. He or she prepares the audit plan, delivers meetings and

submits audit report at the end of quarter or year. Conducting audits is the

main responsibility of a lead auditor and that needs to be done on a daily basis

Auditing is crucial to the success of any management system. As a result, it carries

with it heavy responsibilities, tough challenges and complex problems. This five

day intensive course prepares the participants for the qualification process for ISO

27001. It also allows them to give practical help and information to those who are

working towards compliance and certification.

Call Us- +91-9650202445 | +91-9650677445 CRAW Security

COURSE CONTENTS MODULE 01 : Introduction of ISO 27001 LA Training Course

• Introduction

• Auditor Certification

• World-Wide Recognition of Auditor Qualifications

• Reference Standards and Documents

• Learning Objectives

• Continues Assessment

• Examination

• IRCA Code of Conduct

MODULE 02 : Introduction of Information Security Management Systems and

Standards Development

• Definition and importance of Information in ISMS

• CIA and DAD Triads

• Additional Goals

• ISMS Purpose and Objectives

ISMS purpose and business benefits

Benefits of Certification

• Hands-on Exercises and discussion

• Legal and Regulatory compliance

Legal and Regulatory Framework

Conformance Vs Compliance

MODULE 03 : Requirements of ISO 27001

• Quick Content Comparaison ISO 27001vs ISO 27001

Contents of ISO 27001

Process approach and processes involved in establishing

Implementing & operation

Monitoring & reviewing

Maintaining and improving the ISMS

• ISMS scope, boundaries of ISMS and permissible exclusions.

• ISMS Scope and exclusions

• Hands-on exercises and discussion

MODULE 04 : Requirements of ISO 27001 (Continued)

• ISMS Clauses

ISO 27001 clauses

Information Security Policy

Internal Audits, Management Reviews, Improvement.

Hands-on exercises and discussion

• Policy and Objectives

• Asset Register

• Risk Assessment and Risk Treatment.

• Risk Assessment examination and Evaluation.

• Hands-on exercises and discussion

• Annex A Controls and ISO 27002

Annex A Controls

SoA

Incident Management and Business Continuity.

• Introduction to SoA Examination and Evaluation.

• Hands-on exercises and discussion

MODULE 05 : Audit Planning and Preparation

• Reasons for auditing

• Audit principles

• Process of audit program management

• Audit competence and evaluation methods

• Audit Responsibilities

Audit time

Audit Process Flow

Audit Plans and Programs

Initial Document Review

MODULE 06 : Audit Planning and Preparation (Continued)

Hands-on exercises and discussion

Audit Activities

Preparation

Audit plan

ISMS Audit Check lists

Audit Check Lists

MODULE 07 : Process Audit Techniques and Collecting evidence

• Process auditing, Auditor qualities and selection.

• Audit Script

• Audit stages

• Audit techniques

• Collecting evidence through questions

• Observation, checking, note taking, and collecting evidence

• Hands-on exercises and discussion

MODULE 08 : Process Audit Techniques and Collecting evidence (continued)

• Audit techniques and collecting evidence through questions, observation, checking, note

taking and collecting evidence.

• Introduction to audit role playing

• Reporting the Audit Findings

Audit team meeting

Nonconformities and observation

Corrective and preventive actions

• Hands-on exercises and discussion

MODULE 09 : Conclusion

• NCR Judgment and Reporting

• Reporting the Audit Findings

Corrective actions and follow up

• Review of the course

Learning Objectives

Key learning points of the course

Delegate feedback

Review of specimen examination

Final questions and answers

• Hands-on exercises and discussion

Target to Audience Individuals

School Students

College Students

IT Professionals

IT Officers

IT and LAW

Officers

Corporates

IT Training Firms

IT Consultants

IT Experts

IT Officers

IT Institutions & Colleges

IT Graduated or Computer Science Students

Call Us- +91-9650202445 | +91-9650677445 CRAW Security

Governance Security Agencies | Security Groups | Govt. IT Institutions | IT Govt. & Security Officers.

What we try to Give

We try to give you real industry standards with best possible quality to all our

customers and clients. We focus on Various sections of Society and running a national

level campaign to literate Students from all parts of company who can’t Afford “Basic

IT Computer Training”. We wish we could teach as many students from all over the

world and make it a beautiful place to work. We work on minimum gross margins to

strength the Indian It infrastructure.

Online Training

Call Us- +91-9650202445 | +91-9650677445 CRAW Security

Classroom Training Virtual Lab

Contact Us CRAW SECURITY

1st Floor, Plot no. 4, Lane no. 2,Kehar Singh Estate,

Westend Marg, Behind Saket Metro Station,

New Delhi – 110030

Call Us

011-40394315 | +91-9650202445 | +91-9650677445

Mails Us training@craw.in

Visit Us

www.crawsecurity.com | www.craw.in

THANK YOU IT HAS BEEN A PLEASURE!