PECB Certified ISO 28000

Why should you attend?

The PECB ISO 28000 Lead Auditor training course enables you to develop the necessary competencies to perform security management system (SeMS) audits by applying widely recognized audit principles, procedures, and techniques. This training course integrates the ISO/IEC 17021-1 requirements, the ISO 19011 guidelines, and other best practices of auditing, in order to equip you with the necessary competencies for planning, conducting, and closing ISO 28000 conformity assessment audits successfully. Besides the theoretical basis, the training course also provides a hands-on approach by providing examples, exercises, and quizzes to reinforce your understanding of the key aspects of ISO 28000 conformity assessment audits, including the interpretation of ISO 28000 requirements in the context of an audit, the principles of auditing, the application of audit methods and approaches to evidence collection and verification, leading an audit team, drafting nonconformity reports, preparing the audit report, and following up on nonconformities. After completing the training course, you can sit for the exam. If you successfully pass the exam, you can apply for the “PECB Certified ISO 28000 Lead Auditor” credential. The internationally recognized “PECB ISO 28000 Lead Auditor” certificate validates your professional expertise and demonstrates that you have the knowledge and skills to audit an SeMS based on ISO 28000.

Who should attend?

The ISO 28000 Lead Auditor training course is intended for:

• Auditors seeking to perform and lead SeMS audits
• Individuals responsible for maintaining conformity to the ISO 28000 requirements
• Technical experts seeking to prepare for an SeMS audit
• Professionals wanting to pursue a career in management systems conformity assessments
• Security management consultants
• Regulators responsible for ensuring compliance with security standards and regulations
• Management representatives seeking to master the SeMS audit process

Course agenda Duration: 5 days

Day 1 Introduction to the security management system (SeMS) and ISO 28000

1. Training course objectives and structure
2. Standards and regulatory frameworks
3. Certification process
4. Fundamental concepts and principles of security management
5. Overview of ISO 28000 requirements

Day 2 Audit principles and the preparation for and initiation of an audit

1. Fundamental audit concepts and principles
2. The impact of trends and technology in auditing
3. Evidence-based auditing
4. Risk-based auditing
5. Initiation of the audit process
6. Stage 1 audit

Day 3 On-site audit activities

1. Preparing for stage 2 audit
2. Stage 2 audit
3. Communication during the audit
4. Audit procedures
5. Creating audit test plans

Day 4 Closing of the audit

1. Drafting audit findings and nonconformity reports
2. Audit documentation and quality review
3. Closing of the audit
4. Evaluation of action plans by the auditor
5. Beyond the initial audit
6. Managing an internal audit program
7. Closing of the training course

Day 5 Certification Exam