PECB Certified Course Lesotho

ISO 28000 Lead Auditor Training

In an interconnected global economy, supply chain security is paramount, yet many organizations struggle to effectively assess and manage the complex risks threatening their operations. The absence of a robust Security Management System (SeMS), aligned with ISO 28000, can expose organizations to significant disruptions, financial losses, and reputational damage, especially with the rise of digital supply chain vulnerabilities and AI-driven threat analysis. ISO 28000 is an international standard that specifies the requirements for a security management system, including aspects critical to supply chain security. It enables organizations to establish, implement, maintain, and continually improve a SeMS, ensuring resilience against security incidents.

This PECB ISO 28000 Lead Auditor certification course is designed for security professionals, auditors, and compliance managers who need to move beyond theoretical understanding to practical application, equipping you with the proven methodologies of ISO/IEC 17021-1 and ISO 19011. You will gain the expertise to lead comprehensive SeMS audits, produce actionable audit reports, and drive continuous improvement, validating your competence with a globally recognized PECB credential.

Duration
5 Days
Duration
Delivery
Instructor-Led
Delivery
Next Session
Next Session
Location
Live Virtual
Mon - Fri
See Training Dates Download Brochure
Official Accreditation Partner

Our Course ISO 28000 Lead Auditor is accredited by PECB

Starting from
$850
per participant
See upcoming dates

Choose Your Preferred Training Format

Training Options

Reserve Your Spot Today — Pay When You're Ready!

Live Online Training

Join from anywhere with interactive virtual sessions

Starts
Ends
Mon - Fri (5 Days)
USD 1,800
Register Group
Starts
Ends
Mon - Fri (5 Days)
USD 1,800
Register Group
Starts
Ends
Mon - Fri (5 Days)
USD 1,800
Register Group
Starts
Ends
Mon - Fri (5 Days)
USD 1,800
Register Group
Starts
Ends
Mon - Fri (5 Days)
USD 850
Register Group

Classroom Training

In-person sessions at premier locations

Nairobi Kenya
Mon - Fri
5 Days
USD 2,200
View Sessions
Kigali Rwanda
Mon - Fri
5 Days
USD 2,500
View Sessions
Mombasa Kenya
Mon - Fri
5 Days
USD 2,200
View Sessions
Kampala Uganda
Mon - Fri
5 Days
USD 2,400
View Sessions

In-person training at our premier venues — pick a city and date that works for you.

Location Duration Fee Language
Nairobi, Kenya Mon - Fri (5 Days) USD 2,200 English See dates & reserve →
Kigali, Rwanda Mon - Fri (5 Days) USD 2,500 English See dates & reserve →
Mombasa, Kenya Mon - Fri (5 Days) USD 2,200 English See dates & reserve →
Kampala, Uganda Mon - Fri (5 Days) USD 2,400 English See dates & reserve →

Live, instructor-led sessions you can join from anywhere — pick the next start date below.

Code Start Date End Date Duration Fee
SeMS-04 Mon - Fri (5 Days) USD 1,800 Reserve my seat → Reserve team seats →
SeMS-04 Mon - Fri (5 Days) USD 1,800 Reserve my seat → Reserve team seats →
SeMS-04 Mon - Fri (5 Days) USD 1,800 Reserve my seat → Reserve team seats →
SeMS-04 Mon - Fri (5 Days) USD 1,800 Reserve my seat → Reserve team seats →
SeMS-04 Mon - Fri (5 Days) USD 850 Reserve my seat → Reserve team seats →
Suggest a session that fits my schedule

What You'll Master in This Training

Built by industry pros — practical insights, real-world examples, and strategies you can apply immediately.

Module 1: Introduction to SeMS and ISO 28000

This module introduces the foundational concepts of Security Management Systems (SeMS) and the core requirements of ISO 28000. You will gain an understanding of the standard's structure, its relevance to supply chain security, and the overall certification process.

  • Training course objectives and structure overview.
  • Standards and regulatory frameworks for supply chain security.
  • PECB certification process and credential pathways.
  • Fundamental concepts and principles of security management.
  • Overview of ISO 28000 requirements and clauses.
  • Understanding the SeMS scope and boundaries.
  • Exercise: Mapping ISO 28000 clauses to organizational security objectives.

Delve into the fundamental principles of auditing, focusing on the preparation and initiation phases of an ISO 28000 audit. This module covers evidence-based and risk-based auditing, and how technology impacts modern audit practices.

  • Fundamental audit concepts and principles from ISO 19011.
  • The impact of trends and technology in SeMS auditing, including automated tools.
  • Evidence-based auditing techniques for security controls.
  • Risk-based auditing approaches for supply chain vulnerabilities.
  • Initiation of the audit process: objectives, scope, and criteria.
  • Conducting a Stage 1 audit: documented information review and readiness assessment.
  • Exercise: Developing a risk-based audit plan for a simulated supply chain.

This module focuses on the practical execution of on-site audit activities, including preparing for Stage 2, effective communication strategies, and developing audit test plans to gather objective evidence.

  • Preparing for the Stage 2 audit: audit team roles and responsibilities.
  • Executing the Stage 2 audit: conducting interviews, observations, and sampling.
  • Communication during the audit: managing auditee interactions and challenges.
  • Audit procedures for evidence collection and verification.
  • Utilizing digital tools for efficient evidence management and reporting.
  • Creating detailed audit test plans for ISO 28000 controls.
  • Exercise: Simulating an on-site audit interview and evidence collection.

Learn to effectively close an ISO 28000 audit, including drafting nonconformity reports, preparing the final audit report, and evaluating corrective action plans. This module also covers managing an ongoing internal audit program.

  • Drafting clear and concise audit findings and nonconformity reports.
  • Audit documentation and quality review processes.
  • Closing of the audit: presenting findings and recommendations.
  • Evaluation of corrective action plans by the auditor.
  • Beyond the initial audit: surveillance audits and re-certification.
  • Managing an internal ISO 28000 audit program effectively.
  • Exercise: Drafting a nonconformity report and proposing corrective actions.

This final module is dedicated to preparing you for the PECB ISO 28000 Lead Auditor certification exam. It covers key competency domains and provides strategies to maximize your success.

  • Review of fundamental principles and concepts of SeMS.
  • Deep dive into ISO 28000 requirements for auditing.
  • Understanding fundamental audit concepts and principles for the exam.
  • Strategies for preparing an ISO 28000 audit for exam scenarios.
  • Techniques for effectively conducting an ISO 28000 audit in exam questions.
  • Mastering the closing of an ISO 28000 audit for certification.
  • Exercise: PECB ISO 28000 Lead Auditor mock exam and debrief.

Drop Us a Query

Fill out the form below and we'll get back to you.

ISO 28000 Lead Auditor Overview

Organizations worldwide face escalating pressure to secure their supply chains against a spectrum of threats, from physical breaches to cyberattacks and regulatory non-compliance. This demand creates a critical need for professionals who can not only understand the ISO 28000 standard but also demonstrate the proven competence to audit a Security Management System (SeMS) effectively. You need to be able to interpret ISO 28000 requirements, apply audit principles, lead audit teams, draft nonconformity reports, and manage an audit program. This course addresses that need by transforming your knowledge into auditable expertise, focusing on the practical application of ISO 28000 requirements and the rigorous audit guidelines of ISO 19011.

This PECB ISO 28000 Lead Auditor course provides a comprehensive, hands-on approach to mastering SeMS conformity assessment audits. You will learn to initiate an audit, prepare detailed audit test plans, conduct on-site activities, manage communication during audits, and effectively close an audit by drafting findings and evaluating corrective action plans. The curriculum emphasizes practical exercises, scenario-based learning, and the application of audit methods for evidence collection and verification. You will gain specific capabilities such as evaluating SeMS conformity against ISO 28000, applying risk-based auditing techniques, and managing an internal audit program, ensuring you can lead audits that deliver measurable value. We will also explore the impact of technology, such as automated audit tools and data analytics, on modern auditing practices.

Who Should Attend?

This PECB ISO 28000 Lead Auditor course is specifically designed for professionals who are committed to ensuring the integrity and resilience of supply chain security management systems through rigorous auditing practices.

This course is designed for:

  • Security Auditors seeking to lead and perform ISO 28000 SeMS conformity audits.
  • SeMS Managers responsible for maintaining ISO 28000 compliance within their organizations.
  • Supply Chain Security Officers tasked with assessing and mitigating security risks.
  • Compliance Managers overseeing adherence to security standards and regulations.
  • Technical Experts preparing for or participating in SeMS certification audits.
  • Security Management Consultants advising clients on ISO 28000 implementation and audit readiness.
  • Regulators responsible for ensuring compliance with security management standards.
  • Management Representatives seeking to master the SeMS audit process and reporting.
  • Professionals aspiring to a career in security management system conformity assessments.
  • Risk Managers evaluating security controls and supply chain vulnerabilities.

Learning Objectives

This course equips you to plan, conduct, and close Security Management System (SeMS) audits that meet ISO 28000 requirements and earn your PECB Lead Auditor certification.

By the end of this course, you'll be able to:

  • Analyze fundamental concepts and principles of an ISO 28000 Security Management System.
  • Interpret ISO 28000 requirements from an auditor's perspective for SeMS conformity.
  • Evaluate SeMS conformity to ISO 28000 using ISO 19011 audit principles.
  • Design comprehensive audit plans and test procedures for ISO 28000 assessments.
  • Execute on-site audit activities, including evidence collection and verification using digital tools.
  • Formulate clear nonconformity reports and audit findings based on objective evidence.
  • Manage an ISO 28000 audit program, including follow-up on corrective actions.
  • Synthesize audit results into final reports for management review and certification bodies.

Examination Prerequisites

To fully benefit from this training course, you should have a basic understanding of ISO 28000 and general audit principles. While not strictly mandatory, prior exposure to security management concepts or experience in an auditing role will be advantageous.

Professional and Organizational Impact

When you lead Security Management System (SeMS) audits with a PECB ISO 28000 Lead Auditor certification and practical strategies, you become a trusted driver of organizational resilience and compliance assurance.

As a certified professional, you will benefit by:

  • Strengthen technical expertise in ISO 28000 SeMS auditing.
  • Gain confidence in leading complex supply chain security audits.
  • Enhance credibility as a certified PECB ISO 28000 Lead Auditor.
  • Develop robust skills in drafting audit findings and nonconformity reports.
  • Position yourself as an authority in security management system compliance.
  • Expand career opportunities in global supply chain security roles.
  • Build a network of peers and experts in the SeMS auditing domain.

Organizations with PECB-certified ISO 28000 Lead Auditor professionals build stronger Security Management Systems (SeMS), reduce supply chain risks, and demonstrate robust compliance to stakeholders.

Your organization will benefit from:

  • Achieving verifiable conformity to ISO 28000 SeMS requirements.
  • Mitigating critical supply chain security risks and vulnerabilities.
  • Ensuring regulatory compliance and avoiding potential penalties.
  • Improving audit readiness for certification and surveillance assessments.
  • Enhancing reputation and stakeholder trust in security management.
  • Optimizing resource allocation for security controls and risk treatment.
  • Driving continuous improvement in the Security Management System.

Educational Approach

This is a practical, certification-focused course designed to turn ISO 28000 knowledge into auditable implementation skills and exam-ready confidence.

Methodology includes:

  • Hands-on audit exercise: Applying ISO 19011 principles to SeMS evidence collection.
  • Scenario simulation: Conducting a Stage 2 audit under realistic supply chain security constraints.
  • Gap analysis workshop: Diagnosing SeMS conformity against ISO 28000 clauses.
  • Stakeholder mapping: Identifying and communicating audit findings to relevant SeMS leadership.
  • Case study analysis: Examining SeMS audit challenges in logistics, manufacturing, and technology sectors.
  • Group workshop: Developing a comprehensive ISO 28000 audit plan and nonconformity report.
  • Exam preparation: Mock questions, time management strategies, and scoring rubric review for the PECB exam.

Upcoming Sessions

Next available dates worldwide

Virtual

(Zoom) Training
USD 1,800
13th Jul-17th Jul 2026
Reserve my seat See all dates

Nairobi

Kenya
USD 2,750
13th Jul-17th Jul 2026
Reserve my seat See all dates

Kigali

Rwanda
USD 2,950
13th Jul-17th Jul 2026
Reserve my seat See all dates

Mombasa

Kenya
USD 2,200
29th Jun-3rd Jul 2026
Reserve my seat See all dates

Kampala

Uganda
USD 2,850
13th Jul-17th Jul 2026
Reserve my seat See all dates

Examination & Certification Information

Recognized credentials that advance your career

Upon successful completion of the PECB ISO 28000 Lead Auditor exam, you can apply for the internationally recognized "PECB Certified ISO 28000 Lead Auditor" credential. This certification validates your professional expertise and demonstrates your proven knowledge and skills to audit a Security Management System (SeMS) based on ISO 28000. The exam duration is 3 hours and covers seven competency domains, including fundamental SeMS principles, ISO 28000 requirements, audit concepts, and the full audit lifecycle from preparation to program management.

To achieve the "PECB Certified ISO 28000 Lead Auditor" credential, you must pass the exam and demonstrate five years of professional experience, of which two years must be in security management, along with at least 300 hours of SeMS audit activities. PECB offers a free retake within 12 months of the initial exam date if needed. All certification and examination fees are included in the course price, and an attestation of course completion worth 31 CPD (Continuing Professional Development) credits will be issued.

Real Results from Real Professionals

Thousands of professionals have transformed their careers through our training programs. Now, it's your turn.

View All Reviews

Trusted by 100+ organizations across 40+ countries

Premier Bank
Amnesty International
UNDT SACCO
UNFPA
USAID
AMREF Health Africa
KENTRADE
CPF
UFIA
UNICEF
Central Bank of Kenya
UNDP
GIZ
Premier Bank
Amnesty International
UNDT SACCO
UNFPA
USAID
AMREF Health Africa
KENTRADE
CPF
UFIA
UNICEF
Central Bank of Kenya
UNDP
GIZ
Barbours
Bank of Rwanda
RFA
Dahabshil Bank
Dorcas Aid
Finn Church Aid
KCB Foundation
Ministry of Education Saudi Arabia
NSSF Uganda
RBA
Reserve Bank of Malawi
WASREB Kenya
Virginia Commonwealth University
Barbours
Bank of Rwanda
RFA
Dahabshil Bank
Dorcas Aid
Finn Church Aid
KCB Foundation
Ministry of Education Saudi Arabia
NSSF Uganda
RBA
Reserve Bank of Malawi
WASREB Kenya
Virginia Commonwealth University