Select your language


APMG ISO/IEC 27001 Auditor Courses

ISO/IEC 27001 Auditor certification training courses and exams available in several languages and provided by iLEARN

Availability and prices of APMG ISO/IEC 27001 Auditor courses

Featured products

In this showcase you will find a selection of training courses and exams in the ISO/IEC 27001 Auditor context. 
If you do not see the course or exam you want, please contact us.

iLEARN is an ATO (Accredited Training Organization) 
of APMG-International for ISO/IEC 27001 courses
ISO27001 sito

For an online verification of accreditations, do a research with iCONS - Innovative Consulting S.r.l. of which iLEARN is a business unit.



ISO/IEC 27001 is an international standard that provides the basis for effective management of confidential and sensitive information, and for the application of information security controls. It sets the requirements and the structure of the Information Security Management System (ISMS) and, for each organization that attains it, it certifies to all the parts involved (shareholders, sponsors, managers, customers and suppliers) the adoption of an efficient ISMS and the continuous organization’s commitment on maintaining it.



The ISO/IEC 27001 Auditor certification demonstrates knowledge of how to audit organizations to identify conformity with ISO 27001, how to evaluate the principles of risk management and how to propose appropriate treatments and controls to reduce information security risk. Candidates who obtain this certification have knowledge of how to lead organizations through an audit program, direct audit teams in relation to the guidance given in ISO 19011 and how to evaluate the effectiveness of applied corrective actions to maintain ISMS conformity with ISO 27001.



APMG ISO/IEC 27001 Auditor certifies the expertise in performing audits against the ISO/IEC 27001 standard. 
The course prepares the participants for the APMG ISO/IEC 27001 Auditor exam.



Our APMG ISO/IEC 27001 Auditor training course can provide 16 Professional Development Units (PDUs). Here below you can find more details about the PDUs allocation:

Technical: 0
Leadership: 0
Strategic: 16

Please note that, in order to auto-declare PDUs attending this course provided by iLEARN, the purchase of the attendance confirmation (attendance certificate) in electronic format (pdf) is mandatory. Select the option to add the attendance confirmation at the moment of purchase and proceed to checkout.


For more information about PDUs and how to claim them to maintain your PMI qualifications, please visit this page.


Here below you can read the course sheet with information about ISO/IEC 27001 Auditor course.


  • How to audit organizations to identify conformity with ISO 27001
  • How to evaluate the principles of risk management - including risk identification, analysis and evaluation
  • How to propose appropriate treatments and controls to reduce information security risk, support business objectives and improve information security
  • Leading organizations through an audit program
  • Directing audit teams
  • Evaluating the effectiveness of applied corrective actions to maintain ISMS conformity with ISO 27001

Who it is aimed at

  • Third-party auditors working for Certification Bodies, responsible for conducting audits which certify organizations against ISO 27001 and ISO 19011
  • Internal auditors seeking to understand the specific requirements of auditing Information Security Management Systems needed to confirm that an organization conforms to the ISO 27001 or ISO 19011 standard


  • Introduction to the course
  • Introduction, background and defined terms
  • Audit management types and activities
  • Introduction to evidence
  • Evidence of leadership & support of the ISMS
  • Evidence of planning & operation of the ISMS
  • Introduction to controls
  • Organizational controls (Part 1)
  • Organizational controls (Part 2)
  • People controls
  • Physical controls
  • Technological controls
  • Revision, exam, mock exam


To take part to the ISO/IEC 27001 Auditor training course and exam, it is recommended (not mandatory) that candidates hold ISO/IEC 27001 Foundation certification.

To be able to take the exam, it's required to have read and accepted the terms and conditions of the examination institute. The acceptance of such terms and conditions will have to be confirmed when taking the exam.


  • Classroom/distant course duration: 2 days
  • Online course durations:
    • 30 days access to the platform
    • 1 year access to the platform
    • Full (Foundation + Auditor): 1 year with exam




Courses languages


Teacher language

Italian, English, French

Material course language


Exam type



ISO/IEC 27001 Auditor official certificate

Certificate type


Exam language


Exam format

  • 40 questions
  • Multiple choice format
  • 120 minute duration
  • 20 marks or more required to pass (out of 40 available) - 50%
  • Open book exam. Allowed manuals: ISO/IEC 27001:2013, ISO/IEC 27002:2013, ISO 19011:2018, APMG ISO/IEC 27001 Supplementary Paper

Frequently Asked Questions

No, all prices on the website are excluding VAT. However, remember that VAT is always not applicable in the following cases:

billing to a non EU company or citizen billing to a non Italian EU company with a valid VIES VAT id

You can check the VAT id on VIES portal at this link:

The website implements this rules automatically. However, you or your organization could be exempted by VAT application for other legal reason. In such a case contact us ( so that we can analyze and confirm your case. If so, please don't submit subscriptions using the website: your request will be handled through manual order handling processing.

With the purchase of e-learning packages with 30 days and 1 year of duration, exam doesn’t have to be necessarily taken within the closing date of the account on the e-learning platform. The validity of the exam voucher code is 12 months starting from the issue date.

During the purchase process it is possible to register data and details of each participant. 

The activation date of the package can be selected during the purchase process on our website. The days of access to the course, indicated in the title of the product, will be calculated starting from the selected date. Payment must be completed before the activation date.

30 days or 1 year are to be considered as the period, so the days, during which it is possible to access the purchased training courses on our e-learning platform. These periods start on the activation date selected during the purchase process on our webiste. The activation date can be chosen and selected within 30 days from the purchase date. If you need more flexibility, do not hesitate to contact us.  


Exam voucher code is usually issued at the activation of the e-learning course, anyway it can also be issued at the end of the e-learning course of sent after 24/48 hours from the order date. In case of purchase for exam only, exam voucher code is issued at purchase confirmation, always after the receipt of payment.