ISO 27001: 2022 Lead Auditor (Exemplar Global Certified) Dates: Jul 31-Aug 3, 2023 (9AM – 5PM, EST) Modality: V/ILT (Webinar accessing ZOOM through the LMS) Summary Course Description: ISO 27001: 2022 is a voluntary international Information Security Management System standard. This is a 4 day course that starts by reviewing the requirements and ensuring the students are capable and comfortable interpreting the standard. The course then assures students have a deep understanding of how to implement the requirements. The course offers internal auditors an ability to apply their knowledge in a case study and the final day teaching how to lead a complex audit. More than 40,000 companies have chosen independent assessment & certification to the voluntary information security management system standard ISO 27001: 2022 is the best way to accommodate a wide range of customers at a nominal cost. This course helps you implement an efficient and effective management system In many critical sectors doing so is no longer optional but a contractual requirement, and many firms are already certified. We use the Case Study Method to provide an in-depth practical approach to interpreting the standard. You will see a full range of examples of how to implement the standard and challenges one faces while conducting 2nd or 3rd party audits. Objectives: - Day 1 – REQUIREMENTS - The primary objective is to understand and be able to interpret the ISO 27001: 2022 requirements. We take a structured approach to reviewing the requirements. Because the instructors have led implementation projects and audits we are able to facilitate a robust discussion about what may be acceptable artifacts for a third party auditor. They will gain familiarity with the series of standards that make up the ISO 27000 series of standards. We assure students are familiar with how to read the “Notes” and the appendices to assist in interpretation. -Day 2 – IMPLEMENTATION - Students will also become proficient with the essential certification processes. All instructors possess practical experience and shed light into the challenges, trips, falls and opportunities while implementing an ISMS. Whether your firm is a manufacturer or service provider we will help you tailor the ISMS to the industry, size and resources available. Students learn how to build an executable ISMS implementation strategy including the resources required to be successful. When faced with a scenario, students are able to correctly apply the practices and know how to implement them. Students will become familiar with the minimal amount of documentation required and how to implement an ISMS. We discuss how to measure artifacts’ sufficiency, adequacy, timeliness and overall relevance in order to count as an artifact. -Day 3 – INTERNAL AUDIT - The ISO 27001 standard requires regular internal audits are conducted. By attending the first 3 days of this course you will learn all the skills necessary and be qualified to conduct internal audits. You will learn how to measure the artifact against the criteria and draw conclusions. You will learn how to write nonconformance statements and opportunities for improvement. We will discuss practical topics such as what constitutes as a value-added audit and how to conduct an effective remote audit. -Day 4 – LEAD AUDIT - Students will become familiar with the responsibilities of the Lead Auditor. Students will learn how to plan, execute, report and close an ISMS audit. Your case study will assure you have written an audit plan, run an opening meeting and run a closing meeting. You will be challenged with some difficult audit situations and asked to perform under duress. We will highlight International Accreditation Forum (IAF) guidance such as Informational Documents (ID), Mandatory Documents (MD) and Procedural Documents (PD). Students will understand the pathway to becoming a credentialed Exemplar Global certified auditor NOTE: Should a company seek a private session of this course we can include a gap analysis as part of the training and begin to mentor the companies own internal auditors. You Get: -Four days of instructor training -Slides with Notes Pages – -Fast track to becoming a certified Exemplar Global certified auditor -Certificate of Completion – 3.2 CEU’s Your requirements: -Daily Online EXAM – 25 Questions -Ensure you have a robust internet connection -Complete a Workstyle Assessment (WSA) - ~ 25 minute self assessment of your own strengths and weaknesses -Purchase ISO 27001: 2022 Information Security Management System Standard – Requirements & ISO 19011: 2018 Auditing Guidelines (available from www.ansi.org) Instructors: Precision Execution cadre of instructors have information security credentials, implementation and assessment experience.