ISO/IEC 27001 Information Security Lead Auditor

STUDY MODE

LIVE-ONLINE

DURATION

02 - 25 September 2025

LANGUAGE

Greek or English

COST

1.260 € 600 €

Course Overview

Dates and Cost

Dates: 02,04,09,11,16,18 & 23 September 2025
Total Duration: 33 Hours
Timetable: 02/09 - 16/9 >> 09:00 - 14:15
18/09 & 23/09 >> - 09:00 - 13:15
Method of Training: Online via Zoom
ERMIS Program Number: 527052

Cost: €860 | Subsidy: €660 | Final Cost: €200
PECB registration, material & Exam: €400

Funding Information:
The seminar is approved by the Human Resource Development Authority (HRDA), therefore companies are required to pay only €200.
HRDA-approved seminars are exempt from VAT.

Unemployed Individuals:
Registered unemployed individuals may participate in two free seminars per year, upon submitting the relevant authorization from the Public Employment Service office.

Holders of an Individual Learning Account (Ατομικός Λογαριασμός Μάθησης):
Individuals with an active ΑΛΜ can use their available balance to attend the program with full cost coverage.

Individual (Non-Funded) Participation:
Feel free to contact us for more information about individual registration or alternative participation options.

For registrations of 5 or more participants, please contact us directly.

--------------------------------------------------------------
This course is Certified by the national Organization, PECB.

The examination and the courswear material worth is €400 and includes the following:
- PECB Certification and exam fee (exam voucher validity 12 months).
- Electronic PECB training material included.
- A paerticipation certificate of 33 CPD credits will be issued by PECB.
- In case of exam failure, you can retake the exam within 12 months from date of enrlloment, for FREE.

Aim

In the digital era we live today, where various data and assets of organizations can be easily threatened, the acquisition of knowledge and skills related to the ISO 27001 Lead Auditing is a must. One of the primary goals of an organization/ company should be to protect data confidentiality, integrity, and availability. Our ISO 27001 Lead Auditor course is designed to cover this exact need - purpose.

ISO/IEC 27001 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognized audit principles, procedures and techniques. During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.

The ISO/IEC 27001 Lead Auditor certification is a requirement by the Digital Security Authority for Cyber security auditor professional competence (maturity rating). To be able to register on the registry of cyber security auditors, candidates need to hold the certification in order to also participate in a course prepared by the DSA. Additionally, as a registered auditor, upon passing the DSA examination, he/she will be able to conduct cybersecurity audits using the Digital Security Authority's maturity system, and to conduct independent audits of the Maturity model of the Cyprus Digital Security Authority, which is structured and meets the requirements of Annex III: Framework of security measures of the C.D.P. 389/2024

The purpose of audits is the systematic, independent and documented:

recognition of the level of maturity rating of the controlled organizations against the requirements of Annex III of the C.D.P 389/2024
determination of the cases (per security measure) where the organization's compliance is at a level lower than the relevant requirements of the legislation
identification of the cases (per security measure) where the organization's compliance is at a level higher than the relevant requirements of the legislation
informing the audited organizations through the delivery of the relevant audit report.

Based on practical exercises the candidates will also able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution. The certification enhances the auditor’s credibility with clients, employers, and peers. It demonstrates a commitment to maintaining high standards in information security management and continuous professional development.

Certified auditors are trained to identify and assess risks effectively. Their expertise helps organizations implement robust security measures to protect sensitive information, thereby reducing the likelihood of security breaches and mitigating potential damages. Many jurisdictions have specific legal and regulatory requirements related to information security. Certified ISO27001 auditors help organizations navigate these complex requirements, ensuring compliance and avoiding legal penalties. Certified auditors not only help with initial certification but also play a crucial role in ongoing compliance and continuous improvement of the ISMS. They provide valuable insights and recommendations for enhancing information security practices over time.

ISO27001 is an internationally recognized standard. Certification as an ISO27001 auditor is globally recognized, enabling professionals to work with organizations around the world and broadening their career prospects. Becoming a certified ISO27001 auditor is crucial for professionals who want to advance their careers in information security, ensure organizational compliance, and contribute to the development of robust and effective information security management systems

Course Objective

Upon the completion of this course, the trainees will be able to:

In terms of knowledge:

Describe the ISO/IEC 27001 requirements for an ISMS from the perspective of an
Prepare audit documentation, including checklists, audit plans, and audit reports, in accordance with ISO 27001 requirements and best
List the processes related to the Risk Management
Describe the risk management processes within the context of information security, including risk assessment methodologies and risk treatment
Prepare to lead audit teams effectively, coordinate audit activities, and foster collaboration among team

In terms of skills:

Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC
Organise an ISO/IEC 27001 compliance audit by demonstrating their skills in planning, conducting, or closing, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
Develop effective communication skills
Develop relevant interviews skills, managing and facilitating discussions, and conveying audit findings to various
Develop problem solving skills in the context of the information security audits
Develop analytical skills needed by auditors to analyse complex information and situations to identify underlying issues and recommend appropriate

In terms of Awareness:

Participate in the management of an ISO/IEC 27001 audit program
Evaluate properly the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
Criticize ethically and professionally as the course will emphasize on the importance of auditor ethics, independence, and professionalism, instilling a strong sense of integrity and impartiality in conducting audits
Participate in the process to add value and effectiveness in the audit in various organizations
Evaluate if a trend or the technology a person uses in a company is emerging or Auditors, will be able after completing this course, to know how to stay updated and adapt practices accordingly in their companies (they will be more aware of the trends and technologies and so they will be considered as more helpful).

Participant’s Profile

People who wish to participate in this course are required to have a fundamental understanding of ISO/IEC 27001 and comprehensive knowledge of audit principles.

Topics

Introduction to the information security management system (ISMS) and ISO/IEC 27001.
Audit principles, preparation, and initiation of an audit.
On-site audit activities.
Closing the audit
Revision

Training method

Our instructor conducts the seminar live on Zoom, offering an interactive virtual training experience that includes real-time collaboration, hands-on activities, dynamic presentations, and practical demonstrations.

Trainer

Andreas Christoforides

IT Auditor and Trainer

Andreas Christoforides is an experienced IT Auditor and Trainer, actively engaged with various organizations in the implementation and enhancement of Information Security Management Systems. He is a member of the Cyprus Computer Society and a PECB GOLD Trainer, certified in ISO/IEC 27001, ISO 22301, GDPR (CDPO), NIS2 & DORA. He previously served as Deputy Head of IT Infrastructure at a leading bank in Bulgaria.
Since 2015, Mr. Christoforides has successfully delivered a broad spectrum of cybersecurity projects, focusing on strategy, governance, and risk management, data privacy and protection (GDPR), as well as business resilience and recovery. His expertise includes conducting IT risk assessments and developing comprehensive IT policies and procedures to establish secure and effective IT governance frameworks.
Currently, Mr. Christoforides is the Co-Founder and Managing Director of iClinic, the first online telemedicine platform in Cyprus, dedicated to enhancing the quality of life for clients and patients through a more efficient and accessible healthcare system, and a Chief Information Security Officer at REVSTO, licensed from the Central Bank of Cyprus to operate as a licensed Electronic Money Institution.
He holds a Bachelor of Engineering (BEng) degree from Birmingham City University and a wide range of professional certifications from recognized bodies, including EC-Council, AXELOS, Microsoft, and Cisco.

Course Preview Video