Gain expertise to lead audit teams and to audit an Information Security Management System (ISMS), implemented in accordance with the requirements of the International Standard ISO/IEC 27001.
Quick Access: Introduction· Why this course exists· What it enables you to do· Frameworks and standards· Value· Objectives· Target audience· Programme· Exam & Certification· Additional information· Benefits· Logistics· Registration
Upcoming dates
Confirmed dates.
Synchronous training. Interaction with the instructor and the group.
Live Online • next edition
Live Online • base price
Language: available in PT or ENG
Training: hands-on and case-study based
Exam: 4h
SPECIALIST level – Advanced skills to address critical challenges in the field.
Why this course exists
To turn ISO/IEC 27001 requirements and controls into real, evidence-based audits aligned with international best practices.
Many organisations implement (or maintain) an ISMS but struggle when they need to demonstrate conformity, auditable evidence, and readiness for internal and external audits. This course prepares professionals to structure an Audit Programme, lead teams, and conduct audits of an ISMS with method, consistency, and a results-oriented approach.
What this course enables you to do
Structure
Design and maintain an audit programme (internal and/or external) aligned with ISO/IEC 27001 and audit best practices.
Plan
Prepare and plan audits (objectives, criteria, scope, team, plan, and approach), including Stage 1 and Stage 2 audits.
Conduct
Perform audits using appropriate methods for collecting and verifying evidence, effective communication, and team management in real contexts.
Conclude
Record findings and nonconformities, build conclusions, produce the report, and manage follow-up, supporting the maintenance of ISO/IEC 27001 certification.
Frameworks, standards and best practices covered throughout the course
ISO/IEC 27002
ISO 19011
ISO/IEC 27007
ISO/IEC 27008
ISO/IEC 17021-1
ISO/IEC 27006
ISO/IEC 17024
Audit Programme
Stage 1 & Stage 2
BEHAVIOUR Methodology (step-by-step)
Value for the organisation
- Stronger ISMS governance and control, with structured internal audits and consistent evidence
- Reduced risk of critical nonconformities in external audits, through preparation and method
- Continuous improvement driven by findings, corrective actions, and auditable follow-up
- A more competent team to engage with Certification Bodies and support the maintenance of ISO/IEC 27001 certification
Introduction
The Information Security ISO 27001 Lead Auditor course is supported by a case study and challenges participants to audit an Information Security Management System (ISMS) based on the requirements of ISO/IEC 27001 and internationally recognised audit best practices.
Beyond learning concepts, principles, and requirements, the course focuses on the ability to put into practice an ISO/IEC 27001 Audit Programme, based on a custom audit methodology proposed by BEHAVIOUR, including the development of resources, templates, and tools needed to support internal and external audits.
The foundational knowledge from the Information Security 27001 Foundation course is included in this course and, for that reason, attending or holding the Foundation certification is not a prerequisite.
This course is updated with the latest editions released across all related best practices, including any preliminary version published when applicable.
This Training Plan and all associated documents are protected by Copyright and registered as a literary work with IGAC.
Overall objectives
By the end of this course, participants will be able to:
- Understand fundamental information security concepts and the main requirements and controls of ISO/IEC 27001
- Understand the correlation within the ISO/IEC 27000 family, including ISO/IEC 27001 and ISO/IEC 27002, and relevant practices, legislation and regulation
- Understand the ISO/IEC 27001 certification process
- Understand fundamental audit concepts and principles based on ISO 19011
- Establish, implement, maintain and improve an internal audit programme aligned with ISO/IEC 27001 and supported by audit best practices
- Prepare and plan ISO/IEC 27001 audits by defining objectives, criteria, scope, team, plan and approach
- Understand roles (including the auditor’s role), competence requirements, and communication requirements for successful audits
- Conduct internal and external ISO/IEC 27001 audits (1st, 2nd and 3rd party), including Stage 1 and Stage 2
- Complete an ISO/IEC 27001 audit, ensuring follow-up activities and closure
- Use the audit process to support ongoing conformity and maintenance of ISO/IEC 27001 certification
- Acquire the knowledge needed to succeed in the “BEHAVIOUR Certified Information Security 27001 Lead Auditor” exam
Target audience
- Information Security / IT consultants and other professionals who need to perform internal or external audits
- Internal auditors who participate in or lead ISO/IEC 27001 audits
- External auditors (contracted) and professionals who aim to work with Certification Bodies in ISO/IEC 27001 certification audits
- Managers or heads of audit functions/departments who want to consolidate a compliant audit programme
- Project managers who lead (or are preparing to lead) an ISO/IEC 27001 implementation programme and need to understand audit requirements
- Professionals involved in the implementation or operation of an ISMS who want an in-depth understanding of the audit process
Prerequisites
There are no mandatory formal prerequisites. However, prior experience or exposure to information security, Information Security Management Systems (ISMS), auditing, risk management, governance and operations is recommended, as well as familiarity with standards and best practices from the ISO/IEC 27000 family.
In addition, other specific requirements may apply, when relevant, depending on the quotation/proposal provided (please refer to the proposal)..
Programme
Information Security, ISO/IEC 27001 and related best practices
- Course introduction
- Information security standards and conformity requirements
- Preparation for ISO/IEC 27001 certification
- Information security fundamentals
- Presentation and overview of ISMS requirements (Part 1: Clauses 4 to 6.1)
ISMS and fundamental audit principles
- Presentation and overview of ISMS requirements (Part 2: Clauses 6.2 to 10 and Annex A)
- Introduction to audit concepts and principles based on ISO 19011
Prepare, plan and initiate the audit; perform document and on-site audits
- Internal audit programme
- Preparation and planning of ISMS audits
- Communication during the audit
- Audit planning and initiation
- Document audit execution (Stage 1)
- Information synthesis and planning for the on-site audit (Stage 2)
- On-site audit execution (Stage 2)
Conclude on-site activities and close the audit
- Obtaining and verifying information: audit methods and testing
- Identifying and recording audit findings
- Preparing audit conclusions
- Audit closure; prepare and distribute the report
- Follow-up activities
- Maintenance of ISO/IEC 27001 certification
- Personal certification and course closure
Exam(s) and Certification
Exam “Certified Information Security 27001 Lead Auditor”
The exam covers the following competence domains:
- Domain 1: Information security fundamentals and ISO/IEC 27001 requirements
- Domain 2: Fundamental audit concepts and principles based on ISO 19011
- Domain 3: Establishing and maintaining an ISO/IEC 27001 internal audit programme
- Domain 4: Preparing and planning ISO/IEC 27001 audit activities
- Domain 5: Conducting ISO/IEC 27001 audit activities
- Domain 6: Completing and closing ISO/IEC 27001 audit activities
Language(s): Portuguese and English (please contact BEHAVIOUR regarding availability in other languages).
Duration: 4 hours (240 minutes).
Format: Multiple-choice questions and open-ended questions, based on a main case study and related to the competence domains.
Number of questions: 48 questions.
Pass mark: 700/1000 points.
Results: “Pass or Fail”.
Retake: 1 free retake within a maximum period of 2 months after the exam result is made available.
Certification (levels and requirements)
After passing the exam and signing the contract/code of ethics, candidates may apply for one of three levels, according to their experience:
- Certified Information Security 27001 Associate Auditor: no prior experience required
- Certified Information Security 27001 Auditor: 2 years of experience in information security and auditing
- Certified Information Security 27001 Lead Auditor: 5 years of experience in information security and auditing
A Certificate and a digital Certification Badge (i.e., “badge”) will be issued to participants who successfully pass the certification exam and meet all requirements of the certification level they apply for.
The “Certified Information Security 27001 Lead Auditor” personnel certification scheme was designed and is maintained in accordance with ISO/IEC 17024.
Certification schemes apply to individuals only (not organisations). Certification and its maintenance depend on exam results, professional experience, and the commitment to, and compliance with, the contract/code of ethics. If the professional fails to comply with the contract/code of ethics, certification is not granted or may be revoked.
Additional information
General information
- Training delivered in Portuguese or English
- Online training materials available in Portuguese or English, with online access, according to the awarded conditions
- Practical, step-by-step audit methodology
- BEHAVIOUR digital Training Attendance Certificate with 40 CPD/CPE credits
- Online Certification Exam, in Portuguese or English. The exam may be taken up to 2 months from the course start date
- If the candidate does not pass the exam, they are entitled to one free retake within a maximum period of 2 months from the date the initial exam result is released
- Digital Certification Diploma and digital Certification Badge, after successfully passing the exam and completing the application process. This registration has no associated cost
Instructor(s)
Benefits
See benefits
- The ISO/IEC 27001 standard defines an auditable and certifiable Information Security Management System (ISMS), recognised internationally.
- ISO/IEC 27001 supports certification and international recognition, market access, operational optimisation, and stronger trust with customers, partners, and regulators.
- The course follows the BEHAVIOUR pedagogical model, with a personnel certification scheme in accordance with ISO/IEC 17024.
- Audit-focused training with a step-by-step process covering the audit programme, planning, evidence collection, findings, and follow-up.
- Preparation for internal and external audits, including best practices based on ISO 19011 and requirements applicable to certification audits.
- A custom methodology that turns knowledge into practice, with tools and techniques applicable to real contexts.
- The certification exam is proctored by an official BEHAVIOUR administrator.
- The exam includes multiple-choice questions and open-ended questions, based on a case study, to assess competencies more effectively.
- After passing the exam and applying for certification, the professional achieves the applicable level. If they do not pass, a free retake is available within the timeframe defined by the scheme.
Logistics
Useful information
- Live Online (synchronous): 9:30–17:30 (Lisbon, GMT 0), with a lunch break and short breaks
- On-site (synchronous): 9:30–17:30 (Lisbon, GMT 0), with a lunch break and short breaks
- Duration: 28h of live sessions + 12h of guided independent work (exercises and content consolidation).
- Requirements: computer with stable internet, browser, PDF reader, audio/video
Hotels in Lisbon
Registration
Complete the form to register for your preferred cohort. Please check the upcoming dates.
Request more information
If you would like to discuss how this course fits your professional or organisational context, contact us and we will recommend the most suitable pathway.
Request Information
Companies: request a proposal
For team registrations, we provide volume conditions and a proposal tailored to organisational needs.
Request a Proposal