Image 1 of 1
Image 1 of 1
Image 1 of 1
Image 1 of 1
This programme builds lead auditor and expert practitioner capability in ISO 27001. The lead auditor component covers managing ISMS certification audits, audit sampling of Annex A controls, cloud and third-party environment audit approaches, evaluating risk treatment plans and residual risk decisions, and reporting to ISO/IEC 17021-1 standards. The expert practitioner stream covers advanced information security risk assessment, designing information asset management frameworks, integrating ISO 27001 with ISO 42001 and broader ESG governance requirements, managing supplier ISMS obligations, and security incident response programme design. Suitable for senior information security professionals and those leading ISO 27001 certification programmes.
This programme builds lead auditor and expert practitioner capability in ISO 27001. The lead auditor component covers managing ISMS certification audits, audit sampling of Annex A controls, cloud and third-party environment audit approaches, evaluating risk treatment plans and residual risk decisions, and reporting to ISO/IEC 17021-1 standards. The expert practitioner stream covers advanced information security risk assessment, designing information asset management frameworks, integrating ISO 27001 with ISO 42001 and broader ESG governance requirements, managing supplier ISMS obligations, and security incident response programme design. Suitable for senior information security professionals and those leading ISO 27001 certification programmes.