Skip to Main Content
Select regional store:
Privacy as a service | The simplest, fastest, most affordable way to comply with data privacy laws | Find out more
Certified ISO 27001 ISMS Lead Auditor Online Training Course

Certified ISO 27001 ISMS Lead Auditor Training Course

SKU: 4522
  • Build your career as an ISO 27001 lead auditor and obtain the ISO 27001 Lead Auditor certification with this five-day ISO 27001 Lead Auditor training course.
  • Fully certificated, practitioner-led course equips you to execute an ISO/IEC 27001:2013-compliant ISMS audit.
  • Train without the travel with our instructor-led online course, giving you all the benefits of classroom study without the hassle, uncertainty, and cost of travel.
  • Course dates are available in Eastern Standard Time (EST) and Pacific Standard Time (PST).
  • The included exam leads to the ISO 17024-certificated ISO 27001 ISMS Lead Auditor (CIS LA) qualification.
Step 1 - Select location
Step 2 - Select date
Price: $1,995.00
Step 3 - Select quantity

Training course outline

This fully accredited course equips you with the skills to conduct second-party (supplier) and third-party (external and certification) audits. Build your career as a lead auditor, lead a team of auditors and achieve compliance with ISO 27001.

Using a combination of formal training, practical exercises, and relevant case studies, an experienced ISO 27001 trainer, auditor, and consultant will:

  • Help you understand best-practice audit methodology based on ISO 19011:2011 (Guidelines for auditing management systems).
  • Show you how to use audits to monitor conformance to the Standard, ensure consistent implementation, and assess the effectiveness of continual improvement.
  • Help you gain experience of the practical application of ISO 27001 audit processes through discussion and role-play.

Certified ISO 27001 ISMS Lead Auditor training course benefits

 Aligned with best practice

Aligned with the best-practice ISO 19011:2011 (Guidelines for auditing management systems) audit methodology.

 Led by specialists

An experienced ISO 27001 auditor and practitioner will explain how to lead an audit from start to finish.

 Learn from anywhere

Available from anywhere in the world with an Internet connection, take advantage of all the interactive benefits of classroom training from the convenience of your desk.

 Designed by experts

Designed by IT Governance Director Steve Watkins, a contracted technical assessor for UKAS, where he helps with the assessment of certification bodies.

 Incredible value

You receive market-leading training at a highly competitive price.

See what our previous learners think about this course


of delegates passed the first time.


were happy with the pace of the course.


found the course content to meet their expectations.


agreed that course content was relevant.

“Extremely knowledgeable, bringing advanced legal and work experience into the classroom. ”

- Steve H Strater, CEO


“Thanks to Mr Gamble’s insights and patience for my pragmatic learning style, I was able to attain 95% exam result. He is an asset to IT Governance. ”

- Albert Rocca, Company Director


“William was an excellent instructor. He was able to make an online eight-hour day course pleasant and engaging and informative. ”

- Lisa Greenleaf, Operations Manager


Who should attend this training course?

This course is aimed at those who want a globally recognized ISO 27001 lead auditor qualification to further their careers, and at managers who are responsible for the implementation and maintenance of an ISO 27001-compliant ISMS, such as: 

  • IT/ Information security manager
  • Compliance auditor
  • GDPR consultant
  • IT/ Information security consultant
  • Cyber security consultant
  • Head of IT
  • Information and risk manager
  • Information security analyst
  • Information security officer
  • Internal auditor
  • ISMS manager

Your learning path

Find out how the Certified ISO 27001 ISMS Lead Auditor Training Course will help you start or enhance your knowledge and career.

This course is an essential component of the following learning paths:

ISO 27001 learning path

Why choose IT Governance for your training needs?

  • We’re internationally recognized as the authority on ISO 27001 – Our team led the world’s first ISO 27001 certification project. Since then, we have trained more than 8,000 professionals on information security management system (ISMS) implementations and audits.
  • Trained by industry experts – our trainers are working consultants with years of practical, hands-on experience.
  • Learn from anywhere – we have adjusted our delivery methods to allow you to learn from anywhere.
  • Choose the method that suits you – we offer classroom, instructor-led online, self-paced online, e-learning, and in-house training options.
  • Access your training anywhere – all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course.
  • Business solutions to suit you – whether you’re a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.
Course details

What does this training course cover?

  • An overview of the structure and major requirements of ISO/IEC 27001
  • An overview of the audit process used by certification bodies
  • The purpose, benefits, and core principles of effective auditing
  • Common auditing terms and definitions
  • Critical skills required for performing an audit
  • Best-practice audit methodology based on ISO 19011
  • How to establish, maintain and manage an audit program
  • How to plan, conduct, report, summarise, and follow-up on an audit
  • Effective interviewing techniques and observation skills
  • How to use audits to identify nonconformities and ensure appropriate corrective action is taken
  • How to assess and evaluate the competence of auditors
  • Accredited certification audit specifics
  • How the audit process is used in first, second, and third-party audits
  • How to apply continual improvement of the ISMS

Course agenda:

  • Purpose and benefits of audits
  • Role of auditors
  • Role of standards in audits
  • Audit terms and definitions
  • Principles of auditing
  • Managing an audit program
  • Performing an audit
  • Observing and listening
  • Reporting and Summarizing Audit Findings
  • Conducting Audit Follow-up
  • Competence and Evaluation of Auditors
  • Accredited Certification Audit specifics
  • Auditing an Information Security Management System to ISO 27001:2013

What’s included in this course?

  • Complete course materials (digital copy provided as a PDF file)
  • The ISO 27001 Certified ISMS Lead Auditor exam
  • A certificate of attendance

What equipment should I bring?

This course is delivered as a WebEx Live Online session. Anyone booked on this course is expected to have a reliable Internet connection at their home or office.

We will check and confirm that you have the WebEx application installed, and that you can correctly log on to our WebEx training center before the course.

To sit the online exam, you will need:

  • Internet Explorer 9 (or later) or Mozilla Firefox version 16 (or later)
  • Internet access for the full time of the exam
  • To deactivate the pop-up blocker
  • A working webcam on the machine you are using to sit the exam

Course duration and times

9:00 am – 5:00 pm each day course is run.

Exams and qualifications

Certified ISO 27001 ISMS Lead Auditor exam

Attendees take the ISO 27001 Certified ISMS Lead Auditor (CIS LA) exam set by IBITGQ
(International Board for IT Governance Qualifications). There is no extra charge for this exam.

  • Delivery method: Online
  • Duration: 90 minutes
  • Questions: 40
  • Format: Multiple choice
  • Pass mark: 75%

This course is equivalent to:


CPD points

What qualifications will I receive?

Certified ISO 27001 ISMS Lead Auditor (CIS LA).


This course is accredited by the International Board for IT Governance Qualifications (IBITGQ), as well as CIISec (The Chartered Institute of Information Security) and satisfies the CIISec requirements at Level 1: A1, A3, A7, C1, C2, D2, E3, F2, H1 and H2; and at Level 1+: A2, A4, A5, A6, B1, B2, D1, E1, E2, F1 and G1.

You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the IBITGQ/GASQ successful candidate register.

The PCI SSC has indicated that it accepts GASQ certifications in relation to the IBITGQ accredited courses as meeting the requirements of an individual applying to become a Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA).


How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately upon completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
  • Certificates for those who have achieved a passing grade will be issued within ten working days from the exam date.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.

Can exams be retaken?

Yes, if you are unsuccessful on the first attempt, you can retake the exam for an additional fee. You can email us to schedule the retest for the exam.


Are there any prerequisites for this course?

There are no formal entry requirements, but it is assumed that you have taken the ISO27001 Certified ISMS Foundation or ISO27001 Certified ISMS Lead Implementer training course or you have a good working knowledge of ISO 27001 gained through practical experience.

Is there any recommended reading?

We strongly recommend you purchase and read the standard before to attending the course:

We also recommend that you purchase one or more of the following:

Customer reviews

(5.00)stars out of 5
# of Ratings: 2
1. on 2/16/2017, said:
5 stars out of 5
Well worth the time and money. I implemented and managed a registered global ISO 27001 ISMS for eight years. The course matched my experiences and gave me better insights into the audit process. Great course!
2. on 2/15/2017, said:
5 stars out of 5
Best class, very effective, and efficient use of time. I was impressed on how well the on-line training worked, the instructor kept the class engaged and we were able to learn from others attending the class. Excellent course, I highly recommend it!
Showing comments 1-2 of 2
This website uses cookies. View our cookie policy