What is included?

• You have 12 months time as of reception of the learning material to learn, do the exam and get your certification
  
• Certification and examination fees are included in the price of the training course 
• Participants will be provided with the training course material containing over 450 pages of explanatory information, examples, best practices, exercises, and quizzes
  
• An Attestation of Course Completion worth 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course. 
• In case candidates do not pass the exam, they are entitled to a free retake within 12 months from the date the coupon code is received  
• + 20% reduction on the first year subscription for our all-in-one ISMS/GRC management solution

Why should you take this training course?

The ISO 18788 Lead Auditor training enables you to develop the necessary expertise to perform a Security Operations Management System (SOMS) audit by applying widely recognized audit principles, procedures and techniques. During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.

Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.

After acquiring the necessary expertise to perform this audit, you can sit for the exam and apply for a “PECB Certified ISO 18788 Lead Auditor” credential. By holding a PECB Lead Auditor Certificate, you will demonstrate that you have the capabilities and competencies to audit organizations based on best practices.

Who should attend?

This training course is intended for: 

• Auditors seeking to perform and lead Security Operations Management System (SOMS) certification audits
• Managers or consultants seeking to master a Security Operations Management System audit process
• Individuals responsible for maintaining conformance with SOMS requirements
• Technical experts seeking to prepare for a Security Operations Management System audit
• Expert advisors in a Security Operations Management 

Training course structure

Module 1: Introduction to a Security Operations Management System (SOMS) and ISO 18788

• Course objectives and structure
• Standards and regulatory frameworks
• Certification process
• Fundamental concepts of Security Operations Management
• Security Operations Management System (SOMS)

Module 2: Audit principles, preparation and launching of an audit

• Fundamental audit concepts and principles
• Audit approach based on evidence and risk
• Initiating the audit
• Stage 1 audit
• Preparing the stage 2 audit (on-site audit)

Module 3: On-site audit activities

• Stage 2 audit
• Communication during the audit
• Audit procedures
• Creating audit test plans
• Drafting audit findings and nonconformity reports

Module 4: Closing the audit

• Audit documentation and quality review
• Closing the audit
• Evaluation of actions plans by the auditor
• Beyond the initial audit
• Managing an internal audit programme
• Competence, evaluation and closing the training

Certification Exam

Learning objectives

 By the end of this training course, the participants will be able to:

• Understand the operations of Security Operations Management Systems (SOMS) based on ISO 18788
• Acknowledge the correlation between ISO 18788 and other standards and regulatory frameworks
• Understand an auditor’s role in planning, leading and following-up on a management system audit in accordance with ISO 19011
• Learn how to interpret the requirements of ISO 18788 in the context of a SOMS audit

Examination

The “PECB Certified ISO 18788 Lead Auditor” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competency domains: 

• Domain 1: Fundamental principles and concepts of a Security Operations Management System (SOMS)
• Domain 2: Security Operations Management Systems (SOMS)
• Domain 3: Fundamental audit concepts and principles
• Domain 4: Preparation of an ISO 18788 audit
• Domain 5: Conducting an ISO 18788 audit
• Domain 6: Closing an ISO 18788 audit
• Domain 7: Managing an ISO 18788 audit programme

Duration: 3 hours
Location: Online through the PECB app OR in person in one of the PECB exam centers
Preparation: PECB Exam Preparation Guides
Language: The exam is available in multiple other languages and does not need to be taken in the same language as the training material. Additional time can be requested when your native language is not available in your mother tongue (to be requested by candidates on the exam day)
Retake: In case you fail the exam, you can retake it within 12 months following the initial attempt for free

For specific information about the exam type, languages available, and other details, please visit the List of PECB Exams and the Examination Rules and Policies.

Certification

After successfully passing the exam, you can apply for the respective credential. You will receive the certificate once you comply with all the requirements of this certification.

The requirements for PECB Auditor Certifications are:

To be considered valid, the audit activities should follow best audit practices and include the following:

1. Audit planning
2. Audit interview
3. Managing an audit program
4. Drafting audit reports
5. Drafting nonconformity reports
6. Drafting audit working documents
7. Documentation review
8. On-site audit
9. Follow-up on nonconformities
10. Leading an audit team

Note: PECB certified individuals who possess both the Lead Implementer and Lead Auditor credentials are qualified for the respective PECB Master Credential, given they have taken 4 additional Foundation Exams related to this scheme. For more information about the Foundation Exams and the overall Master Requirements, please go to PECB Master Credentials.

For more information about the ISO 18788 certifications and the PECB certification process, please refer to the Certification Rules and Policies.

Contact us on [email protected] if you have other questions