This instructor-led course teaches you the skills to plan and execute an audit of an ISMS that conforms to ISO 27001:2022. It also prepares you to pass the ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) exam on the first attempt.
You will learn:
Please note that this course is part of the Lead Auditor modular training scheme, and you must have previously taken the Core Audit Skills module.
The Lead Auditor modular training programme teaches the skills required to conduct external and supplier audits against standards that include ISO 27001, ISO 22301, ISO 9001 and ISO 14001.
Take our Core Audit Skills module to gain knowledge of the generic auditing process as defined by ISO 19011 and ISO 17021. Build on the basics and choose the specific standard Lead Auditor module of your choice.
The Core Audit Skills module consists of two days of training and is currently available as the first part of the Certified ISO 22301 BCMS Lead Auditor Training Course.
If you only wish to focus on ISO 27001 lead auditing, please purchase the Certified ISO 27001:2022 ISMS Lead Auditor Training Course.
Designed by the team that led the world’s first successful ISO 27001 implementation project.
Taught by an ISO 27001 consultant with extensive experience auditing management systems and helping organisations prepare for an ISO 27001 audit.
Aligned with the best-practice ISO 19011:2018 (Guidelines for auditing management systems) audit methodology.
Learn from anywhere with our instructor-led Live Online or classroom options that allow you to study in your choice of location and keep travel and costs to a minimum.
This course is aimed at people who want a globally recognised ISO 27001 lead auditor qualification to further their careers. It is also designed for managers responsible for implementing and maintaining an ISO 27001-compliant ISMS, such as:
Find out how the Certified ISO 27001:2022 ISMS Lead Auditor Module Training Course will help you enhance your knowledge and career.
This course is an essential component of the following learning paths:
We are the global specialists – As global specialists in information security, cyber security and privacy, we pride ourselves on being market leaders and keeping one step ahead. Our expert instructors use their working knowledge to bring the course content to life, while covering all the essential and technical content.
Built and delivered by experts – Our courses are built and delivered by subject-matter experts and innovative instructional design specialists with years of practical, hands-on experience.
Learn your way – We have the training methods and solutions to suit your business or personal learning style. We offer instructor-led (classroom, Live Online or hybrid), blended, self-paced, elearning, in-house and bespoke training options.
Our service levels are exemplary – From the sales team that pays close attention to your development needs, to the operations team that makes things tick like a Swiss watch, to the energy and skill of the instructors. We are all passionate about what we do and want to ensure you get the best training experience possible.
Pass the first time or train again for free – We have trained more than 28,000 people and we’re confident you’ll pass with us first time. If you don’t, we’ll train you again for free.*
Full course materials (digital copy provided as a PDF file).
The ISO 27001:2022 Certified ISMS Lead Auditor exam.
A certificate of attendance.
You will need a laptop for the duration of your course and exam.
Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.
Day 1: 9:15 am – 5:00 pm
Day 2: 9:15 am – 5:00 pm
Day 3: 9:15 am – 1:30 pm
Learn from anywhere with our instructor-led Live Online or classroom courses.
This course is part of the Lead Auditor modular training scheme, and all learners must have previously taken the Core Audit Skills module.
The Core Audit Skills module consists of two days of training and is currently available as the first part of the Certified ISO 22301 BCMS Lead Auditor Training Course.
Learners should also have a good knowledge of ISO 27001. This could be obtained through practical experience, reading, or attending the Certified ISO 27001:2022 ISMS Foundation or Certified ISO 27001:2022 ISMS Lead Implementer training courses.
Attendees will need to have their own copies of the ISO/IEC 27001:2022 and ISO/IEC 27002:2022 standards for use during the course.
We strongly recommend purchasing and reading the Standards before attending the course:
We also recommend purchasing and reading the following textbook:
Candidates take the ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) exam set by IBITGQ. There is no extra charge for this exam.
This course is equivalent to:
21
CPD points
Successfully completing the course and exam awards the ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) qualification.
This course is accredited by IBITGQ (International Board for IT Governance Qualification) and CIISec (The Chartered Institute of Information Security), and satisfies the CIISec requirements at Level 1: A1, A2, A3, A4, A5, A6, A7, B1, B2, G1, H1 and H2.
IBITGQ is a personnel certification body that certifies individuals in the field of IT governance.
IBITGQ is accredited to the ISO/IEC 17024:2012 standard (Conformity assessment – General requirements for bodies operating certification of persons) by IAS (International Accreditation Service). ISO 17024 is a global, industry-recognised benchmark, and qualifications accredited to this standard are recognised and highly valued by employers throughout the world.
You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the IBITGQ/GASQ successful candidate register.
The PCI SSC (Payment Card Industry Security Standards Council) has indicated that it accepts GASQ certifications in relation to the IBITGQ accredited courses as meeting the requirements of an individual applying to become a PCI DSS (Payment Card Industry Data Security Standard) QSA (Qualified Security Assessor).
Candidates must have a form of photographic ID with them as the invigilator may request to check it before the exam.
Yes, if you are unsuccessful on the first attempt, you can retake the exam for an additional fee. You can email us to schedule the retest.
To support your continued professional development, it is essential that you maintain an adequate level of current knowledge associated with an ISO 27001 Lead Auditor. To demonstrate this competency to employers and other key stakeholders, you must recertify your IBITGQ qualification at regular intervals.
Individuals awarded the ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) qualification are required to recertify after three years.
Candidates can undertake a recertification exam any time from one month before or two months after the expiry date (months 35–38) of their certificate. Please see IBITGQ Exams for further details. After this period, candidates can take the standard ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) exam at any convenient time.