ISO/IEC 27001 Lead Auditor
TRECCERT ISO/IEC 27001 Lead Auditor credential recognizes individuals that have in-depth understanding of the ISO/IEC 27001 requirements and controls and ISO 19011 guidelines. TRECCERT Certified ISO/IEC 27001 Lead Auditor individuals are able to apply the concepts, processes, methods and techniques for auditing of an ISMS in the workplace.
- Pass the ISO/IEC 27001 Lead Auditor exam
- Have at least high school education
- Have at least five (5) years of general work experience
- Have at least two (2) years of field-specific work experience
- Have at least 400 hours of auditing experience
- Adhere to the CPE Program, Code of Ethics and certification requirements
Understand the terminology, concepts and principles related to an Information Security Management System (ISMS).
ISMS Requirements and Controls
Understand and interpret the requirements and controls of an Information Security Management System (ISMS) in an audit context.
Understand the basic terminology, principles and distinctive roles related to management system (MS) auditing.
Audit Initiation and Preparation
Plan and develop a risk-based audit strategy in compliance with ISO 19011, and prepare the audit activities and related resources.
Conduct the audit activities in accordance with the audit plan, standards and best practices.
Audit Reporting, Completion and Follow-Up
Prepare and communicate the audit findings, and schedule a follow-up audit to verify the completeness and effectiveness of proposed actions.
The ISO/IEC 27001 Lead Auditor certification program has a three-year recertification cycle.
ISO/IEC 27001 Lead Auditor certification program is ANAB Accredited.
Number of Questions
150 Multiple-choice Questions