Quality, Health, Safety & Environment

ISO 28000 Lead Auditor

This four-day ISO 28000 Lead Auditor course develops the competencies required to plan, conduct, and close supply chain security management system audits. The training integrates ISO/IEC 17021-1 requirements, ISO 19011 auditing guidelines, and ISO 28000 requirements. Participants learn audit principles, evidence- and risk-based auditing, audit team leadership, reporting, and follow-up on nonconformities. Exam fees are included, certification is available, and the exam is delivered online with a three-hour duration.

4 daysExam includedPhysical classroomOnline classroomSelf-study
2,500+ professionals trained99% pass rate120+ countries600+ organisations
PECB
4 May – 7 May
Language
EN
LocationLausanne / Morges & Online
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
27 Jul – 30 Jul
Language
EN
LocationLausanne / Morges - Switzerland
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
19 Oct – 22 Oct
Language
EN
LocationLausanne / Morges - Switzerland
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Confirmed
PECB
Available year-round
Language
ENES
Format
Self-study
Self-study
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Official PECB certification
  • One free retake exam
No date works for you?
Request a private or flexible session

Key takeaways

Interpret ISO 28000 requirements for audit purposes
Plan and conduct conformity assessment audits
Apply evidence- and risk-based auditing
Manage audit teams and follow-up actions
PECB
ISO 28000 Lead Auditor · Titanium Partnerhighest PECB accreditation levelTitanium Partner

Page contents

Course Description

Supply chain security audits have become a critical assurance mechanism in a risk environment shaped by geopolitical instability, complex logistics networks, regulatory pressure, and heightened exposure to disruption and malicious acts. In this context, ISO 28000 audits are expected to go beyond formal conformity and provide credible assurance on the effectiveness of security controls across the supply chain.

This four-day ISO 28000 Lead Auditor course is designed for professionals responsible for planning, conducting, and closing audits of Supply Chain Security Management Systems. The training integrates ISO 28000 requirements with the auditing framework defined by ISO/IEC 17021-1 and the audit guidelines of ISO 19011, ensuring alignment with certification body and regulatory expectations.

Participants develop the skills required to apply risk-based and evidence-based auditing approaches. The course covers the full audit lifecycle, including audit planning, stage 1 and stage 2 audits, on-site audit activities, audit team leadership, formulation of findings, reporting, and follow-up of nonconformities. Particular attention is given to evaluating the effectiveness of security controls and the consistency between risk assessments, operational practices, and audit evidence.

Practical exercises reinforce audit techniques, interview skills, sampling strategies, and professional judgement. By the end of the training, participants are prepared to lead ISO 28000 audits with confidence and credibility, whether in internal audit functions or third-party certification contexts.

    • Explain security management system principles
    • Interpret ISO 28000 requirements as an auditor
    • Evaluate SeMS conformity to ISO 28000
    • Plan and conduct ISO 28000 audits
    • Close audits and manage audit programs

Professional Testimonials

Had a great experience learning with Abilene Academy, it has been an extremely long time since I have attended an external formal training outside of the business organization I work in. I found this training to be truly beneficial for me to attend. the overall delivery of the course by Henri was superb, he kept us well engage despite having half of the room online and half face to face. The communication from the advisors from the initial enquiry regrading the course up until now has also been great! definitely recommending to my colleagues. Thank you!
TG

Tracey Gillett

Crisis and Operations Management

TUI
Henri and Alexis conducted a focused, intensive four-day ISO/IEC 27001 Lead Implementer Course of immediate relevance to The Global Fund. Participants representing both IT and Risk are now better prepared to design and operationise a corporate ISMS.
AT

Andreas Tamberg

Senior advisors enterprise risk management

The Global Fund
Another stellar training course run by Abilene, thank you for the outstanding organization and logistics. The PECB training material is very rich, well presented with clear explanations and notes.
SB

Simon Baynes

BCMS Manager

MSC MEDITERRANEAN SHIPPING COMPANY SA

Frequently Asked Questions

What competencies does ISO 28000 Lead Auditor training develop?

The training develops competencies to plan, conduct, and close ISO 28000 audits and manage audit programs.

Plan, conduct, and close an ISO 28000 conformity assessment audit.

Gerhard ROTTER

ISO 27001 Lead Auditor • ISO 31000 Lead Risk Manager

ISO 28000Lead AuditorSeMSaudit skills

Who should attend ISO 28000 Lead Auditor training?

The course is for auditors, consultants, security managers, regulators, and professionals involved in SeMS audits.

Auditors seeking to perform and lead SeMS audits.

Lekë ZOGAJ

ISO 22301 Lead Auditor • CISM® Exam Bootcamp

target audienceISO 28000SeMS auditors

Which standards guide ISO 28000 audits?

Audits are guided by ISO 28000 requirements, ISO/IEC 17021-1, and ISO 19011 guidelines.

In accordance with ISO/IEC 17021-1 and the guidelines of ISO 19011.

Tania POSTIL

ISO 27001 Lead Implementer • Lead Cybersecurity Manager

ISO 28000ISO 19011ISO IEC 17021-1

Is the ISO 28000 Lead Auditor exam included and how long is it?

Yes, exam fees are included and the exam lasts three hours.

Duration: 3 hours.

Jean MUNYARUGERERO

PECB ISO 27001 Senior Lead Auditor • ISO 27001 Lead Implementer

ISO 28000 examPECBexam duration

What is covered in the ISO 28000 Lead Auditor program?

The program covers SeMS fundamentals, audit preparation, on-site audit activities, reporting, and audit program management.

Day 4: Closing of the audit.

Ramesh PAVADEPOULLE

ISO 27001 Lead Implementer • ISO 27001 Lead Auditor

course programISO 28000audit lifecycle

Last updated:

Train with practitioners. Pass with confidence.

Abilene Academy is the only PECB Titanium Partner in Switzerland — the highest accreditation tier in the industry — delivering certified training in information security, data protection, AI governance, and GRC compliance. 99% exam pass rate. 2,500+ professionals trained across 120+ countries and trusted by 600+ organizations. Multilingual programmes available.

99%
Exam pass rate
2,500+
Professionals trained
120+
Countries reached
Titanium
The only PECB Titanium Partner in Switzerland
Certification included
Multilingual
EN · FR · ES · DE · IT and more

Trusted by 600+ organisations in 120 countries

  • Airbus logoAirbus
  • Altis logoAltis
  • BCEAO logoBCEAO
  • BCV logoBCV
  • Cargolux logoCargolux
  • Cartier logoCartier
  • Cofco Intl logoCofco Intl
  • Confédération SuisseConfédération Suisse
  • Council of Europe logoCouncil of Europe
  • Dell logoDell
  • Deloitte logoDeloitte
  • Devillard logoDevillard
  • Ebay logoEbay
  • Engie logoEngie
  • Etat de Fribourg logoEtat de Fribourg
  • Etihad Airways logoEtihad Airways
  • Eumetsat logoEumetsat
  • EY logoEY
  • Framatome logoFramatome
  • G42 logoG42
  • Gavi logoGavi
  • Republique et canton de Genève logoRepublique et canton de Genève
  • Groupe Mutuel logoGroupe Mutuel
  • HSBC logoHSBC
  • International atomic energy agency logoIAEA
  • IATA logoIATA
  • IBM logoIBM
  • international Labour organization logoILO
  • IMD logoIMD
  • KPMG logoKPMG
  • Kudelski Security logoKudelski Security
  • Loterie Romande logoLoterie Romande
  • MSC logoMSC
  • Nagra logoNagra
  • nespresso logoNespresso
  • Nestlé logoNestlé
  • Novartis logoNovartis
  • Payot SA logoPayot SA
  • Philips logoPhilips
  • PSA PanamaPSA Panama
  • PWC logoPWC
  • Richemont logoRichemont
  • Roche logoRoche
  • RTS Radio Télévision SuisseRTS
  • Santander logoSantander
  • SAP logoSAP
  • https://www.skyguide.ch/Skyguide
  • Société Générale logoSociete Generale
  • Swisscom logoSwisscom
  • SyzSyz
  • The Global fund logoThe Global fund
  • UNGSC logoUNGSC
  • International computing center logoUNICC

We use cookies to improve your experience

Necessary cookies are always active. You can accept, reject non-essential cookies, or customize your preferences.