Services

Suite of Services

Schellman began as a SOC audit firm 20+ years ago. While we still issue more than 2,000 SOC reports each year, our clients’ trust has propelled our expansion. Today, we offer nearly 60 types of audits and assessments delivered by full-time employees. No outsourcing. No compromises.

Download a PDF of All Services

Learning Center

Our Technology

About Us

Schellman is the only Top 50 CPA firm focused exclusively on IT Compliance and Cybersecurity, and we’re the #1 service provider for FedRAMP Assessments.Our industry-leading NPS scores, client retention, and employee retention (low-to-no team churn = less audit fatigue) mean our clients experience greater continuity and quality.We also understand how distracting unplanned work can be, so we focus on client-centric KPIs to help keep your business moving uninterrupted.

ISO Certificate Directory

Services

View All Services

SOC & Attestations

SOC 1 / SSAE 18 Examination

SOC 2 Examination

SOC 3 Examination

SOC for Supply Chain

SOC for Cybersecurity

C5 Attestation

CSA STAR Programs

Payment Card Assessments

PCI DSS Validation

PCI SSF

PCI P2PE Validation

PCI PIN Assessments

PCI 3DS Compliance

ISO Certifications

ISO 27001

ISO 42001

ISO 27701

ISO 9001

ISO 22301

ISO-20000-1

Privacy Assessments

APEC Certification

GDPR Assessment

International Privacy Assessments

US State Privacy Assessments

Microsoft SSPA/DPR Assessment

Privacy Program Assessment

FERPA Assessment

EU Cloud Code of Conduct

Federal Assessments

FedRAMP®

CMMC / NIST SP 800-171

FISMA/NIST

ITAR

CJIS

IRAP

FTC Consent Decrees

Healthcare Assessments

HITRUST CSF Certification

HIPAA Compliance

HIPAA Express

EPCS-DEA Audits

Health Data Host (HDS) Certification

Penetration Testing

Application

Network

Mobile

Social Engineering

Cloud

Physical

Hardware and IoT

Advanced Series

Cybersecurity Assessments

Cloud Configuration Assessments

Ransomware Assessments

NIST Cybersecurity Framework Assessments

Schellman Software Security Assessment (S³A)

TISAX®

SWIFT Customer Security Programme

Internal Audit Co-Sourcing

Crypto and Digital Trust

Schellman Training

Sustainability Services

AI Services

Learning Center

Our Technology

About Us

Leadership Team

Corporate Social Responsibility

Careers

Strategic Partnerships

ISO Certificate Directory

Schellman Training

ISO/IEC 27001 Lead Auditor

ISO/IEC 27001 Information Security Management Systems

Whether you have found the course you want, need a customized course, or are still unsure, complete the form to contact a member of the training team. Additionally, we can discuss team discounts and more.

Begin Registration

ISO/IEC 27001 Lead Auditor

ISO/IEC 27001 Lead Auditor training enables you to develop the necessary expertise to perform an Information Security Management System (ISMS) audit by applying widely recognized audit principles, procedures and techniques.

Why should you attend?

During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.

Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.

After acquiring the necessary expertise to perform this audit, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27001 Lead Auditor” credential. By holding a PECB Lead Auditor Certificate, you will demonstrate that you have the capabilities and competencies to audit organizations based on best practices.

Who can attend?

Auditors seeking to perform and lead information security management system (ISMS) audits
Managers or consultants seeking to master the information security management system audit process
Individuals responsible to maintain conformity with the ISMS requirements in an organization
Technical experts seeking to prepare for the information security management system audit
Expert advisors in information security management

Learning objectives

By the end of this training course, the participants will be able to:

Explain the fundamental concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001
Interpret the ISO/IEC 27001 requirements for an ISMS from the perspective of an auditor
Evaluate the ISMS conformity to ISO/IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
Plan, conduct, and close an ISO/IEC 27001 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
Manage an ISO/IEC 27001 audit program

Educational approach

This training is based on both theory and best practices used in ISMS audits
Lecture sessions are illustrated with examples based on case studies
Practical exercises are based on a case study which includes role playing and discussions
Practice tests are similar to the Certification Exam

Prerequisites

A fundamental understanding of ISO/IEC 27001 and comprehensive knowledge of audit principles.

Course Agenda

Examination

Certification

After successfully completing the exam, you can apply for the credentials shown on the table below. You will receive a certificate once you comply with all the requirements related to the selected credential. For more information about ISO/IEC 27001 certifications and the PECB certification process, please refer to the Certification Rules and Policies .

The requirements for PECB Auditor Certifications are:

Credential	Exam	Professional experience	MS audit/assessment experience	Other requirements
PECB Certified ISO/IEC 27001 Provisional Auditor	PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent	None	None	Signing the PECB Code of Ethics
PECB Certified ISO/IEC 27001 Auditor	PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent	Two years: One year of work experience in Information Security Management	Audit activities: a total of 200 hours	Signing the PECB Code of Ethics
PECB Certified ISO/IEC 27001 Lead Auditor	PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent	Five years: Two years of work experience in Information Security Management	Audit activities: a total of 300 hours	Signing the PECB Code of Ethics
PECB Certified ISO/IEC 27001 Senior Lead Auditor	PECB Certified ISO/IEC 27001 Lead Auditor exam or equivalent	Ten years: Seven years of work experience in Information Security Management	Audit activities: a total of 1,000 hours	Signing the PECB Code of Ethics

Note: PECB Certified Individuals who do possess the Lead Implementer and Lead Auditor Credentials are qualified for the respective PECB Master Credential , given they have taken 4 additional Foundation Exams which are related to this scheme. For more detailed information about the Foundation Exams and the overall Master Requirements, please go to the following link: https://pecb.com/en/master-credentials .

To be considered valid, these audits should follow best audit practices and include the following activities:

Audit planning
Audit interview
Managing an audit program
Drafting audit reports
Drafting non-conformity reports
Drafting audit working documents
Documentation review
On-site Audit
Follow-up on non-conformities
Leading an audit team

General Information

Related courses

Additional information

Training Days: 5
Qualifies for CPE: Yes
Exam Duration: 3 hours
Retake Exam: Yes

Course price

$1,000 Per Participant*

*Schellman assessment clients can enjoy professional training discounts.

Training content and exams are delivered through PECB:
https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27001/iso-iec-27001-lead-auditor