Skip to main content
Back to Training
ISO/IEC 27001 Lead Auditor certification badge

Information Security

ISO/IEC 27001 LA

ISO/IEC 27001 Lead Auditor

This course builds the expertise to audit an information security management system end to end. Participants learn to apply audit principles, procedures, and techniques in line with ISO 19011 and ISO/IEC 17021-1, and practice the craft through case studies and role-play — planning, conducting, and closing audits, then managing an audit program, team, and the communication that comes with it.

Lead5 daysVirtual & On-site31 CPD credits

Learning path options

Self Study

Self-paced online study, at your own pace

Discuss with us →

In-Person Training

On-site delivery across Qatar and the GCC

Discuss with us →

Live Online Training

Instructor-led and delivered live online

Discuss with us →

Why attend

  • Build the expertise to perform and lead ISMS audits
  • Apply audit principles and techniques per ISO 19011 and ISO/IEC 17021-1
  • Sharpen the craft through hands-on, practical exercises
  • Learn to manage audit programs, teams, and stakeholder communication

Who should attend

  • Auditors who want to perform and lead ISMS audits
  • Managers and consultants mastering the ISMS audit process
  • Individuals responsible for maintaining ISMS conformity
  • Technical experts and expert advisers in information security

What you'll learn

  • Explain the concepts and principles of an ISMS based on ISO/IEC 27001
  • Interpret ISO/IEC 27001's requirements from an auditor's point of view
  • Evaluate an ISMS for conformity with ISO/IEC 27001
  • Plan, conduct, and close an audit following ISO/IEC 17021-1 and ISO 19011
  • Manage an ISO/IEC 27001 audit program

Our approach

  • Pairs the theory with information-security audit best practice
  • Uses lecture sessions illustrated with case-study examples
  • Includes practical exercises, role-play, and discussion
  • Practice tests resemble the certification exam

Prerequisites

A fundamental understanding of ISO/IEC 27001 and a solid grasp of audit principles.

Course agenda

Day 1Introduction to the ISMS and ISO/IEC 27001
Day 2Audit principles, preparation, and initiation
Day 3On-site audit activities
Day 4Closing the audit
Day 5Certification exam

Examination

The exam spans seven competency domains, from ISMS and audit principles through preparing, conducting, closing, and managing an ISO/IEC 27001 audit.

Certification

  • Leads to the PECB Certified ISO/IEC 27001 Lead Auditor credential
  • Earned by passing the exam, signing the PECB Code of Ethics, and meeting the experience and audit-hour requirement for your tier
  • Includes one free exam retake within 12 months

Credential tiers

Provisional AuditorPass the exam — no experience required
Auditor2 years' experience (1 in information security) · 200 audit hours
Lead Auditor5 years' experience (2 in information security) · 300 hours
Senior Lead Auditor10 years' experience (7 in information security) · 1,000 hours

Build this capability across your teams.

DAI Consultancy delivers ISO/IEC 27001 Lead Auditor as a corporate cohort — in-person, virtual, or hybrid — structured around your organization's objectives.