Get in Touch

Course Outline

I. Introduction to Information Security
1. Systemic management of information security
2. Organizational benefits and value addition

II. Overview of ISO 27001 Requirements
1. Key requirements of the standard
2. Critical areas of focus
3. Identification of documentation obligations
4. Overview of Annex A

III. Information Security Management System (ISMS) Compliant with ISO 27001
1. Components of an ISMS according to ISO
27001
2. Exercises interpreting and analyzing ISO 27001 requirements

IV. Audits – General Overview
1. Introduction to auditing principles
2. Full audit lifecycle
3. Audit criteria
4. Types of audits

V. Audit Planning and Preparation
1. Defining audit criteria and scope
2. Assembling the audit team
3. Process approach to internal audits
4. Key considerations for developing control question lists
5. Executing audits in accordance with ISO 19011:2018
6. Practical exercises

VI. Conducting an Audit – On-Site Protocols
1. Auditing techniques
2. Objective evidence gathering
3. Identifying and demonstrating non-conformities
4. Competencies required of a lead auditor
5. Practical exercises

VII. Documenting Audit Results
1. Precision in formulating findings
2. Documentation of non-conformities
3. Identifying and recording insights and improvement opportunities
4. Summarizing audit outcomes – Audit Report
5. Practical exercises

VIII. Effective Post-Audit Activities
1. Responsibilities regarding the initiation of corrective actions
2. The Importance of Accurately Determining Root Causes of Non-Conformity
3. Defining corrective actions
4. Evaluating the effectiveness of implemented actions
5. Post-audit activities related to insights and improvement potentials
6. Practical exercises

IX. Discussion and Summary

Requirements

Target Audience

  • Professionals preparing for the role of Lead Auditor under ISO 27001:2023.
  • Anyone with a professional interest in information security auditing.
 35 Hours

Number of participants


Price per participant

Open Training Courses require 5+ participants.

Upcoming Courses

ISO 27001:2023 Lead Auditor of the Information Security Management System

2026-06-05 10:00
35 hours
Seoul Center 1
₩ 12500000 (Online)
₩ 25000000 (Classroom)

ISO 27001:2023 Lead Auditor of the Information Security Management System

2026-06-19 10:00
35 hours
Jungang-Dong Center
₩ 12500000 (Online)
₩ 25000000 (Classroom)

ISO 27001:2023 Lead Auditor of the Information Security Management System

2026-07-03 10:00
35 hours
Seoul - Gran Seoul
₩ 12500000 (Online)
₩ 25000000 (Classroom)

ISO 27001:2023 Lead Auditor of the Information Security Management System

2026-07-17 10:00
35 hours
Seoul Center 1
₩ 12500000 (Online)
₩ 25000000 (Classroom)

ISO 27001:2023 Lead Auditor of the Information Security Management System

2026-07-31 10:00
35 hours
Jungang-Dong Center
₩ 12500000 (Online)
₩ 25000000 (Classroom)

Related Courses

Introduction to ISO27001

 7 Hours

This instructor-led, live training in South Korea (online or onsite) is aimed at beginner-level professionals who wish to gain an understanding of ISO 27001 and its role in enhancing information security within an organization.

By the end of this training, participants will be able to:

  • Understand the purpose and benefits of an ISMS.
  • Familiarize themselves with key ISO 27001 concepts, terms, and principles.
  • Recognize the role of an auditor in ensuring compliance.
  • Gain insight into the audit process and continual improvement within ISO 27001.
Read more...

ISO 27001:2023 Internal Auditor of the Information Security Management System

 35 Hours

Course Objectives

  • Acquire comprehensive knowledge of the ISO 27001:2023 standard
  • Understand the methodology for conducting audits in compliance with the standard
  • Learn industry best practices
Read more...

ISO 27001:2023 Requirements

 14 Hours

Objectives

  • Gain insights into the updates introduced in the ISO 27001:2023 edition
  • Learn how to conduct audits in compliance with the standard
  • Discover best practices
Read more...

ISO 9001 and ISO 27001 – Interpretation and Internal Auditor

 21 Hours

ISO 9001 and ISO 27001 serve as globally recognized benchmarks for Quality Management Systems (QMS) and Information Security Management Systems (ISMS), respectively.

This instructor-led live training, available both online and onsite, is designed for intermediate-level professionals aiming to master the interpretation of these ISO standards and execute effective internal audits.

Upon completing this training, participants will be equipped to:

  • Grasp the fundamental principles and mandatory requirements of ISO 9001 and ISO 27001.
  • Apply the interpretation of clauses and controls to practical, real-world contexts.
  • Effectively plan and conduct internal audits in compliance with ISO standards.
  • Identify nonconformities and propose appropriate corrective actions.

Course Format

  • Engaging lectures paired with interactive discussions.
  • Simulated audit exercises and in-depth case studies.
  • Practical analysis of quality and security scenarios.

Customization Options

  • For organizations seeking tailored training solutions, please contact us to arrange a customized program.
Read more...

PECB ISO 27001:2022 Transition

 14 Hours

This instructor-led, live training in South Korea (online or onsite) is designed for intermediate to advanced IT professionals seeking to enhance their skills and qualifications in information security or related fields.

Upon completion of this training, participants will be capable of:

  • Recognizing the distinctions between ISO/IEC 27001:2013 and ISO/IEC 27001:2022.
  • Acquiring the knowledge and skills necessary to efficiently plan and execute the transition from the 2013 version to the 2022 standard.
  • Applying this knowledge in practical scenarios to facilitate a seamless transition within their respective organizations.
Read more...

Related Categories

ISO 27001
ISO 27001