CONTACT US twitter facebook

ISO 27001: 2022 Lead Auditor

Course description

In the course of this training program, you will develop the expertise necessary to organize and conduct both internal and external audits, in line with ISO 19011 and ISO/IEC 17021-1 certification protocols.

Leveraging hands-on exercises, you'll grasp advanced audit methodologies and acquire the proficiency to manage an audit program, lead an audit team, facilitate customer communications, and navigate conflict resolution.

Upon gaining the required expertise, you are eligible to take the examination for the "Certified ISO/IEC 27001: 2022 Lead Auditor" certification. Being a certificate holder signifies that you possess the skills and competence to conduct audits in organizations, in line with industry best practices.

 Target audience

  • Auditors interested in conducting Information Security Management System (ISMS) certification audits
  • Managers or consultants aiming to master the audit process for an Information Security Management System
  • People in charge of ensuring compliance with Information Security Management System requirements
  • Technical specialists preparing for an Information Security Management System audit
  • Professional consultants specializing in Information Security Management

Learning outcomes

By the end of this training course, the participants will be able to:

  • Clarify the basic principles and concepts of an Information Security Management System (ISMS) as per ISO/IEC 27001: 2022
  • Assess the requirements of ISO/IEC 27001: 2022 for an ISMS from an auditor's perspective
  • Measure the ISMS's compliance with ISO/IEC 27001: 2022, based on core auditing principles and concepts
  • Design, implement, and conclude an ISO/IEC 27001: 2022 audit in line with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other recognized auditing practices
  • Oversee an ISO/IEC 27001: 2022 audit programme.

Our approach

  • This training encompasses both theoretical and practical aspects used in ISMS audits.
  • Examples from case studies are used to enrich the lecture sessions.
  • Practical exercises that include role-play and discussions are derived from a real-life case study.
  • Quiz questions, mirroring the final certification exam, are provided


  • An understanding of ISO/IEC 27001: 2022 and knowledge of ISO 19011 audit principles.

Course Overview

  • Module 1 Principles and concepts of Information Security  Management System (ISMS) 
  • Module 2 Information Security Management System (ISMS) scope 
  • Module 3 ISO 19011 audit concepts and principles 
  • Module 4 Planning and preparation of an ISO/IEC 27001 audit 
  • Module 5 Conducting an ISO/IEC 27001 audit 
  • Module 6 Closing an ISO/IEC 27001 audit 
  • Module 7 Managing an ISO/IEC 27001 audit programme

Course Agenda

  • Day 1: Information security management system (ISMS) and ISO/IEC 27001: 2022
  • Day 2: Audit principles, preparation, planning and initiation of an audit
  • Day 3: On-site audit activities
  • Day 4: Closing the Audit and the final Certification Exam


  • All candidates at official training courses are tested throughout their course with quizzes and exercises, in combination with a final exam held on the last day of the course.  Both elements are a part of the overall score. For this course, the final exam constitutes a 12 question essay type which should be completed within 180 minutes. A passing score is achieved at 70%. Self-study candidates can purchase an exam voucher from our Store.
  • Exam results are returned within 24 hours, with successful candidates receiving both a digital badge and a Certificate of Achievement
download pdf