ISO 27701 Lead Auditor
The ISO/IEC 27701 Lead Auditor training course enables you to develop the necessary skills to perform a Privacy Information Management System (PIMS) audit by applying widely recognized audit principles, procedures and techniques.
Why should you attend?
During this training course, you will obtain the knowledge and skills to plan and carry out audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.
Based on practical exercises, you will be able to acquire knowledge on the protection of privacy in the context of processing personally identifiable information (PII), as well as master audit techniques and become competent to manage an audit program, audit team, establish communication with customers and resolve potential conflicts.
After completing this training course, you can sit for the exam and, if you successfully pass the exam, you can apply for the “PECB Certified ISO/IEC 27701 Lead Auditor” credential. The internationally recognized PECB Lead Auditor certificate proves that you have the capabilities and competences to audit organizations based on best practices.
PECB
Who should attend?
-
Auditors seeking to perform and lead Privacy Information Management System (PIMS) certification audits
-
Managers or consultants seeking to master a PIMS audit process
-
Individuals responsible for maintaining conformance with PIMS requirements
-
Technical experts seeking to prepare for a PIMS audit
-
Expert advisors in the protection of Personally Identifiable Information (PII)
Learning objectives
-
Understand a Privacy Information Management System (PIMS) and its processes based on ISO/IEC 27701
-
Identify the relationship between ISO/IEC 27701, ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
-
Acquire the competences of the auditor’s role in planning, leading, and following up on a management system audit in accordance with ISO 19011.
-
Learn how to interpret the requirements of ISO/IEC 27701 in the context of a PIMS audit
Educational approach
-
This training is based on both theory and best practices used in PIMS audits
-
Lecture sessions are illustrated with examples based on case studies
-
Practical exercises are based on a case study which includes role-playing and discussions
-
Practice tests are similar to the Certification Exam
Prerequisites
A fundamental understanding of information security and privacy, and a comprehensive knowledge of audit principles.
Course agenda
Day 1: Introduction to Privacy Information Management System (PIMS) and ISO/IEC 27701
Day 2: Audit principles, preparation, and launching of an audit
Day 3: On-site audit activities
Day 4: Closing the audit
Day 5: Certification exam
Examination
The “PECB Certified ISO/IEC 27701 Lead Auditor” exam complies with the PECB Examination and Certification Program (ECP) requirements. The exam covers the following competency domains:
Domain 1: Fundamental principles and concepts of a Privacy Information Management System (PIMS)
Domain 2: Privacy Information Management System (PIMS) requirements
Domain 3: Fundamental audit concepts and principles
Domain 4: Preparing an ISO/IEC 27701 audit
Domain 5: Conducting an ISO/IEC 27701 audit
Domain 6: Closing an ISO/IEC 27701 audit
Domain 7: Managing an ISO/IEC 27701 audit program
In case candidates fail the exam, they can retake the exam within twelve months following the initial exam for free.
*Note: This applies only to candidates who have attended the training course.
For more detailed information on the PECB examination process, please visit Examination Rules and Policies.
Certification
After successfully passing the exam, you can apply for the credential shown on the table below. You will receive the certificate once you comply with all the requirements related to the selected credential. Certification fees are included on the exam price.
For more information about the PECB certification process, please refer to the Certification Rules and Policies.
These are the requirements for the PECB Certification:
Credential | Exam | Professional experience | MS audit/assessment experience | Other requirements |
PECB Certified ISO/IEC 27701 Provisional Auditor | PECB Certified ISO/IEC 27701 Lead Auditor exam or equivalent | None | None | Signing PECB Code of Ethics |
PECB Certified ISO/IEC 27701 Auditor | PECB Certified ISO/IEC 27701 Lead Auditor exam or equivalent | Two years: One year of work experience in Privacy Information Management | Audit activities: a total of 200 hours | Signing the PECB Code of Ethics |
PECB Certified ISO/IEC 27701 Lead Auditor | PECB Certified ISO/IEC 27701 Lead Auditor exam or equivalent | Five years: Two years of work experience in Privacy Information Management | Audit activities: a total of 300 hours | Signing the PECB Code of Ethics |
PECB Certified ISO/IEC 27701 Senior Lead Auditor | PECB Certified ISO/IEC 27701 Lead Auditor exam or equivalent | Ten years: Seven years of work experience in Privacy Information Management | Audit activities: a total of 1,000 hours | Signing the PECB Code of Ethics |
General information
- Participants will be provided with the training material containing over 400 pages of explanatory information, discussion topics, examples and exercises.
-
An attendance record certificate of 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course.