ISO 27001:2013 Lead Auditor Course (CQI and IRCA 17518)

This course is an advanced course to Information Security Management Systems (ISMS) where learners will acquire the knowledge and skills to plan and conduct third-partyrd party ISMS audits including act as an audit team leader to manage audits effectively.

The successful completion of this course will increase learners’ credibility, enable learners to conduct 3rd party audits against ISO 27001, and satisfy the formal training requirements for individuals seeking to become a certified Auditor or Lead Auditor with CQI and IRCA.

Share This Post

Who Should Attend

  • Staff who are charged with the responsibility to develop and maintain a ISMS
  • All ISMS auditors who wish to acquire an internationally recognized auditor status
  • Those who wish to explore career opportunities in management system auditing

What will you learn

  • Explain the purpose and business benefits of an information security management system standard, management system audit and third-party certification
  • The ISMS standard framework of Plan-Do-Check-Act, interrelationship pertaining to top management commitment, policies, objectives, planning, implementation measurement, and continuous improvement
  • Plan, conduct, report and follow up on an audit of an information security management system to establish conformity (or otherwise) with ISO 27001 and in accordance with ISO 19011 and ISO 17021, where applicable.

What do you need to know prior to enrolling

  • Knowledge of information security management principles and concepts:
    • awareness of the need for information security
    • the assignment of responsibility for information security
    • incorporating management commitment and the interests of stakeholders
    • enhancing societal values
    • using the results of risk assessments to determine appropriate controls to reach acceptable levels of risk
    • incorporating security as an essential element of information networks and systems
    • the active prevention and detection of information security incidents
    • ensuring a comprehensive approach to information security management
    • continual reassessment of information security and making of modifications where appropriate
  • Knowledge of ISO 27001 requirements and commonly used terms and definitions

Learners that are not familiar with the purpose and intent of the ISO 27001 should complete an CQI and IRCA Certified ISMS Foundation Training course or an equivalent prior to starting this course.

What's Included

  • Course materials
  • Lunch and refreshments
  • Upon full attendance and successful completion of this course, including passing the exam, you will be awarded a CQI and IRCA Certified Certificate of Successful Completion

Delivery Methodology

This course is structured with sizeable time spent on activity-based learning. There are many  group exercises, workshops and case studies for discussions, presentations and interactions among learners and tutors.

Course Outline

  • Session 1: Course Introduction
  • Session 2: Introduction to Information Security Management System
  • Session 3: ISO 27001:2013 Requirements
  • Session 4: Audit Principles and Managing an Audit Program
  • Session 5: Planning the Audit
  • Session 6: Conducting the Audit
  • Session 7: Generating audit findings
  • Session 8: Reporting and Following Up on the Audit
  • Session 9: Certification Process, plus CQI and IRCA Registration


5 days

Course Fee

S$1680.00 (Before GST)

For details about this service, please contact GICG.

ContactGICG Academy today to find out how training can support your business.

For more information, please contact us at +65 6742 3075 (Weekdays, 9am to 6pm)

or through our enquiry form & we will get back to you

Terms and conditions apply. GICG Academy reserves the right to make changes or improvements to any of the products described in this document without prior notice.
Scroll to Top