Skip to Main Content
Strengthen your email security practices with 50% off e-learning | Shop now
Certified ISO 27001:2022 ISMS Lead Auditor Training Course

Certified ISO 27001:2022 ISMS Lead Auditor Training Course

SKU: 5948
  • Train with the ISO 27001 experts and gain the skills to deliver external certification and supplier audits against ISO 27001:2022.
  • Industry-leading course designed to help you build your career as an ISO 27001 auditor.
  • Successfully completing this five-day course and included exam awards the ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) qualification and 35 CPD/CPE points.

Good auditors inform. Great auditors inspire change.
NOW save 25% on auditor training courses.*. Select the soonest date or speak to an expert to reveal unbeatable value.

Speak to an expert

Step 1 - Select location
Step 2 - Select date
Price: 2.920,00 €
Step 3 - Select quantity

Training course outline

ISO/IEC 27001:2022 is the newest version of ISO 27001 and was published in October 2022. While not significantly different from the previous standard, ISO 27001:2022 has notable changes that include scoping, planning, operation and performance evaluation, and a revised Annex A.

This accredited practitioner-led course will teach you:

  • The skills to conduct second-party (supplier) and third-party (external and certification) ISMS (information security management system) audits;
  • How to lead a team of auditors and gain the skills to achieve compliance with ISO 27001;
  • How to competently manage an ISMS audit programme; and
  • The best-practice audit methodology based on ISO 19011, allowing you to master audit techniques.

Certified ISO 27001 ISMS Foundation training course benefits

 Designed by experts

Designed by IT Governance Director Steve Watkins, a contracted technical assessor for UKAS.

 Delivered by professionals

Real-world practitioners show you how to tackle an ISMS project from start to finish.

 Aligned with best practice

Aligned with the best-practice ISO 19011:2011 (Guidelines for auditing management systems) audit methodology. 

 Learn from anywhere

Choose whether you attend Live Online or in person at one of our training venues.

See what our previous learners think about this course


of attendees passed the first time


were happy with the pace of the course


found the course content to meet their expectations


agreed that the course content was relevant.

“I found Max to be a really good trainer and his insights into past audit experiences really helped give the course context. | thought I'd struggle to stay focused given it was delivered online, but Max did a good job at breaking the content up with breaks and exercises.”

- Chelsea Jarvie, Director


“Great course delivered in an effective manner and that gave me knowledge that I can immediately put to good use. Max came across really well and answered all the group’s questions including my own which were quite a few! Credit to the trainer for guiding us through a great course”

- Daniel Berry, Compliance Manager


“I can recommend this course to anyone who needs an 1S0 27001 Lead Auditor qualification. The trainer, exam and lessons are amazing. As a trainer myself, I have to say this is one of the best courses I have ever attended.”

- Michael Wilson, IAL Consultants


"Max was a professional trainer with superb knowledge of the course material, whilst also being extremely helpful and kind to the trainees providing excellent support when required. He also had the ability to communicate and explain situations on all levels so that every trainee was able to understand the content. | would 100% recommend Max as a trainer to anyone in future and he has helped me develop my career further with the training provided.”

- Anonymous


“lan Shorten is a fantastic trainer. He made the subject very easy to understand. He also has wealth of knowledge and I believe he is a true asset to your organisation. The delivery of the subject along with experienced and qualified trainers makes a difference to other training providers. Excellent training delivery and great content. Trust me, the trainer makes a massive difference! Well done to IT Governance for hiring excellent trainers.”

- Anonymous


“l am very pleased with the way the trainer approached the course. He made it easy to assimilate the contents and provided valuable tips based on his personal experience as an auditor.”

- Anonymous


Who should attend this course?

This course is aimed at individuals who want a globally recognised ISO 27001 lead auditor qualification to further their careers. It is also designed for managers responsible for implementing and maintaining an ISO 27001-compliant ISMS, such as:  

  • IT/information security managers
  • Compliance auditors
  • GDPR consultants
  • IT/information security consultants
  • Cyber security consultants
  • Heads of IT
  • Information and risk managers
  • Information security analysts
  • Information security officers
  • Internal auditors
  • ISMS managers

Your learning path

Find out how the Certified ISO 27001:2022 ISMS Lead Auditor Training Course will help you enhance your knowledge and career.

This course is an essential component of the following learning paths:

Why choose IT Governance for your training needs?

  • We’re internationally recognised as the authority on ISO 27001 – our team led the world’s first ISO 27001 certification project.
  • We have trained more than 8,000 professionals on ISMS implementations and audits.
  • Taught by industry experts – our trainers are working consultants with years of practical, hands-on experience.
  • Learn from anywhere – we have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option enables you to attend either in person or online.
  • Choose the method that suits you – we offer classroom, instructor-led online, self-paced online, e-learning and in-house training options.
  • Access your training anywhere – all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course.
  • Business solutions to suit you – whether you’re a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.
Course details

What does this training course cover?

  • An overview of the structure and major requirements of ISO/IEC 27001:2022.
  • An overview of the audit process used by certification bodies.
  • The purpose, benefits and core principles of effective auditing.
  • Common auditing terms and definitions.
  • Critical skills required for performing an audit.
  • Best-practice audit methodology based on ISO 19011.
  • How to establish, maintain and manage an audit programme.
  • How to plan, conduct, report, summarise and follow up on an audit.
  • Effective interviewing techniques and observation skills.
  • How to use audits to identify nonconformities and ensure appropriate corrective action is taken.
  • How to assess and evaluate the competence of auditors.
  • Accredited certification audit specifics.
  • How the audit process is used in first-, second- and third-party audits.
  • How to apply continual improvement of the ISMS.

What’s included in this course?

  • Full course materials (digital copy provided as a PDF file).
  • The ISO 27001:2022 Certified ISMS Lead Auditor exam.
  • A certificate of attendance.

What equipment do I need?

You will need a laptop for the duration of your course and exam.

Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.

Course duration and times

Live Online CET/CEST

  • Day 1: 10:30 am – 6:00 pm
  • Day 2: 10:30 am – 6:00 pm
  • Day 3: 10:30 am – 6:00 pm
  • Day 4: 10:30 am – 6:00 pm
  • Day 5: 10:30 am – 3:00 pm

Live Online EET/EEST

  • Day 1: 11:30 am – 7:00 pm
  • Day 2: 11:30 am – 7:00 pm
  • Day 3: 11:30 am – 7:00 pm
  • Day 4: 11:30 am – 7:00 pm
  • Day 5: 11:30 am – 4:00 pm

Course location

Learn from anywhere with our instructor-led Live Online or classroom courses.

Are there any prerequisites for this course?

There are no formal entry requirements for this course, but learners should have a good knowledge of ISO 27001. This could be obtained through practical experience, reading, or attending the Certified ISO 27001:2022 ISMS Foundation or Certified ISO 27001:2022 ISMS Lead Implementer training courses.

Attendees will need to have their own copies of the ISO/IEC 27001:2022 and ISO 27002:2022 standards for use during the course.

Is there any recommended reading?

We strongly recommend purchasing and reading the following standards before attending the course:

We also recommend that you purchase and read the following textbook:

Exams and qualifications

ISO 27001:2022 Certified ISMS Lead Auditor exam

Candidates take the ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) exam set by IBITGQ. There is no extra charge for this exam.

  • Delivery method: Online
  • Duration: 90 minutes
  • Questions: 40
  • Format: Multiple choice
  • Pass mark: 75%

This course is equivalent to:


CPD points

What qualifications will I receive?

Successfully completing the course and exam awards the ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) qualification.


This course holds accreditation from IBITGQ (International Board for IT Governance Qualifications) and CIISec (The Chartered Institute of Information Security), satisfying CIISec Knowledge Areas requirements at Level 1: A1, A3, A7, C1, C2, D2, E3, F2, H1 and H2; and at Level 1+: A2, A4, A5, A6, B1, B2, D1, E1, E2, F1 and G1.

As a premier personnel certification body, IBITGQ specialises in certifying individuals who demonstrate exceptional proficiency in IT governance practices.

IBITGQ maintains accreditation to the ISO/IEC 17024:2012 standard, a globally recognised benchmark for conformity assessment. Accreditation by the International Accreditation Service (IAS) further underscores the course's commitment to meeting stringent certification requirements.

ISO 17024 certification is esteemed within the industry and universally acknowledged by employers worldwide. By aligning with this standard, our course ensures that your qualifications are not only recognised but also highly valued by employers across diverse sectors.

Upon successful completion of the course, you have the opportunity to validate your professional expertise by registering your qualification on the esteemed IBITGQ/GASQ successful candidate register. This platform serves as a testament to your commitment to excellence in IT governance, setting you apart as a distinguished professional in the field.

How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
  • Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard-copy exam certificates are not issued.

Do I need to bring proof of identity?

Candidates must have a form of photographic ID with them as the invigilator may request to check it before the exam.

Can exams be retaken?

Yes. If you are unsuccessful on the first attempt, you can retake the exam for an additional fee. You can email us to schedule the retest.


To support your continued professional development, it is essential that you maintain an adequate level of current knowledge associated with an ISO 27001 Lead Auditor. To demonstrate this competency to employers and other key stakeholders, you must recertify your IBITGQ qualification at regular intervals. 

Individuals awarded the ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) qualification are required to recertify after three years. Candidates can undertake a recertification exam any time from one month before or two months after the expiry date (months 35–38) of their certificate. Please see IBITGQ Exams for further details. After this period, candidates can take the standard ISO 27001:2022 Certified ISMS Lead Auditor (CIS LA) exam at any convenient time. 

Customer Reviews