Skip to Main Content
Select regional store:
National Cyber Security Awareness Month | Save 15% on self-paced and staff awareness training courses | Use code NCSAM15
Certified ISO 27001 ISMS Lead Auditor Online Training Course

Certified ISO 27001 ISMS Lead Auditor Training Course

SKU: 4522
  • Build your career as an ISO 27001 lead auditor with this five-day course
  • Fully certificated, practitioner-led course equips you to execute an ISO/IEC 27001:2013-compliant ISMS audit
  • Train without the travel with our instructor-led online course, giving you all the benefits of classroom study without the hassle, uncertainty and cost of travel
  • Course dates available in both Eastern Standard Time (EST) and Pacific Standard Time (PST)
  • Passing the included exam leads to the ISO 17024-certificated ISO 27001 ISMS Lead Auditor (CIS LA) qualification

Lockdown learning: get 20% off all training dates, plus all self-paced online courses. For a limited time only. (T&Cs apply)

Step 1 - Select location
Step 2 - Select date
Regular Price: $2,199.00
On Sale For: $1,759.20
Step 3 - Select quantity

Training course outline

This fully accredited course equips you with the skills to conduct second-party (supplier) and third-party (external and certification) audits. Build your career as a lead auditor, lead a team of auditors and achieve compliance with ISO 27001.

Using a combination of formal training, practical exercises, and relevant case studies, an experienced ISO 27001 trainer, auditor, and consultant will:

  • Help you understand best-practice audit methodology based on ISO 19011:2011 (Guidelines for auditing management systems)
  • Show you how to use audits to monitor conformance to the Standard, ensure consistent implementation, and assess the effectiveness of continual improvement
  • Help you gain experience of the practical application of ISO 27001 audit processes through discussion and role-play

Certified ISO 27001 ISMS Lead Auditor training course benefits

 Aligned with best practice

Aligned with the best-practice ISO 19011:2011 (Guidelines for auditing management systems) audit methodology.

 Led by specialists

An experienced ISO 27001 auditor and practitioner will explain how to lead an audit from start to finish.

 Learn from anywhere

Available from anywhere in the world with an Internet connection, take advantage of all the interactive benefits of classroom training from the convenience of your desk.

 Designed by experts

Designed by IT Governance Director Steve Watkins, a contracted technical assessor for UKAS, where he helps with the assessment of certification bodies.

 Designed by experts

Designed by IT Governance Director Steve Watkins, a contracted technical assessor for UKAS, where he helps with the assessment of certification bodies.

 Incredible value

You receive market leading training at an extremely competitive price.

See what our previous learners think about this course


of delegates passed first time.


were happy with the pace of the course.


found the course content to meet their expectations.


agreed the course content was relevant.

“Extremely knowledgeable, bringing advanced legal and work experience into the classroom. ”

- Steve H Strater, CEO


“Thanks to Mr Gamble’s insights and patience for my pragmatic learning style, I was able to attain 95% exam result. He is an asset to IT Governance. ”

- Albert Rocca, Company Director


“William was an excellent instructor. He was able to make an online eight-hour day course pleasant and engaging and informative. ”

- Lisa Greenleaf, Operations Manager


Who should attend this training course?

This course is aimed at individuals who want a globally-recognised ISO 27001 lead auditor qualification to further their careers, and at managers who are responsible for the implementation and maintenance of an ISO 27001-compliant ISMS, such as: 

  • IT/ Information security manager
  • Compliance auditor
  • GDPR consultant
  • IT/ Information security consultant
  • Cyber security consultant
  • Head of IT
  • Information and risk manager
  • Information security analyst
  • Information security officer
  • Internal auditor
  • ISMS manager

Your learning path

Find out how the Certified ISO 27001 ISMS Lead Auditor Training Course will help you start or enhance your knowledge and career.

This course is an essential component of the following learning paths:

ISO 27001 learning path

Why choose IT Governance for your training needs?

  • We’re internationally recognized as the authority on ISO 27001 – Our team led the world’s first ISO 27001 certification project, and since then we have trained more than 8,000 professionals on information security management system (ISMS) implementations and audits.
  • Trained by industry experts – our trainers are working consultants with years of practical, hands-on experience.
  • Learn from anywhere – we have adjusted our delivery methods to allow you to learn from anywhere.
  • Choose the method that suits you – we offer classroom, instructor-led online, self-paced online, e-learning and in-house training options.
  • Access your training anywhere – all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course.
  • Business solutions to suit you – whether you’re a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.
Course details

What does this training course cover?

  • An overview of the structure and major requirements of ISO/IEC 27001
  • An overview of the audit process used by certification bodies
  • The purpose, benefits, and core principles of effective auditing
  • Common auditing terms and definitions
  • Critical skills required for performing an audit
  • Best-practice audit methodology based on ISO 19011
  • How to establish, maintain and manage an audit program
  • How to plan, conduct, report, summarise, and follow-up on an audit
  • Effective interviewing techniques and observation skills
  • How to use audits to identify nonconformities and ensure appropriate corrective action is taken
  • How to assess and evaluate the competence of auditors
  • Accredited certification audit specifics
  • How the audit process is used in first, second, and third-party audits
  • How to apply continual improvement of the ISMS

Course agenda:

  • Purpose and benefits of audits
  • Role of auditors
  • Role of standards in audits
  • Audit terms and definitions
  • Principles of auditing
  • Managing an audit programme
  • Performing an audit
  • Observing and listening
  • Reporting and Summarizing Audit Findings
  • Conducting Audit Follow-up
  • Competence and Evaluation of Auditors
  • Accredited Certification Audit specifics
  • Auditing an Information Security Management System to ISO 27001:2013

What’s included in this course?

  • Full course materials (digital copy provided as a PDF file)
  • The ISO 27001 Certified ISMS Lead Auditor exam
  • A certificate of attendance

What equipment should I bring?

This course is delivered as a WebEx Live Online session. Anyone booked on this course is expected to have a reliable Internet connection at their home or office. We will check and confirm that you have the WebEx application installed, and that you can correctly log on to our WebEx training centre before the course.

To sit the online exam you will need:

  • Internet Explorer 9 (or later) or Mozilla Firefox version 16 (or later)
  • Internet access for the full time of the exam
  • To deactivate the pop-up blocker
  • A working webcam on the machine you are using to sit the exam

Course duration and times

9:00 am – 5:00 pm CST each day course is run

Exams and qualifications

Certified ISO 27001 ISMS Lead Auditor exam

Attendees take the ISO 27001 Certified ISMS Lead Auditor (CIS LA) exam set by IBITGQ
(International Board for IT Governance Qualifications). There is no extra charge for this exam.

  • Delivery method: Online
  • Duration: 90 minutes
  • Questions: 40
  • Format: Multiple choice
  • Pass mark: 75%

This course is equivalent to:


CPD points

What qualifications will I receive?

Certified ISO 27001 ISMS Lead Auditor (CIS LA).


This course is accredited by the International Board for IT Governance Qualifications (IBITGQ), as well as CIISec (The Chartered Institute of Information Security) and satisfies the CIISec requirements at Level 1: A1, A3, A7, C1, C2, D2, E3, F2, H1 and H2; and at Level 1+: A2, A4, A5, A6, B1, B2, D1, E1, E2, F1 and G1

You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the IBITGQ/GASQ successful candidate register.

The PCI SSC has indicated that it accepts GASQ certifications in relation to the IBITGQ accredited courses as meeting the requirements of an individual applying to become a Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA).


How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam
  • Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued

Can exams be retaken?

Yes, if you are unsuccessful on the first attempt you can retake the exam for an additional fee. You can email us to schedule the retest for the exam.


Are there any prerequisites for this course?

There are no formal entry requirements but it is assumed that you have taken the ISO27001 Certified ISMS Foundation or ISO27001 Certified ISMS Lead Implementer training course or you have a good working knowledge of ISO 27001 gained through practical experience.

Is there any recommended reading?

We strongly recommend you purchase and read the standard prior to attending the course:

We also recommend that you purchase one or more of the following:

Customer reviews

(5.00)stars out of 5
# of Ratings: 2
1. on 2/16/2017, said:
5 stars out of 5
Well worth the time and money. I implemented and managed a registered global ISO 27001 ISMS for eight years. The course matched my experiences and gave me better insights into the audit process. Great course!
2. on 2/15/2017, said:
5 stars out of 5
Best class, very effective, and efficient use of time. I was impressed on how well the on-line training worked, the instructor kept the class engaged and we were able to learn from others attending the class. Excellent course, I highly recommend it!
Showing comments 1-2 of 2
This website uses cookies. View our cookie policy