top of page
Image by ConvertKit

ISO/IEC 27701:2019 Lead Auditor (PIMS LA)

A Key Certification for a Privacy Professional for Auditing a Privacy Information Mangement System

The standard: ISO/IEC 27701:2019 Security techniques — Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management — Requirements and guidelines.

ISO/IEC 27701 specifies requirements and provides guidance for establishing, implementing, maintaining and continually improving a Privacy Information Management System (PIMS) in the form of an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management within the context of the organization.

This standard specifies PIMS-related requirements and provides guidance for PII controllers and PII processors holding responsibility and accountability for PII processing.

This standard is applicable to all types and sizes of organizations, including public and private companies, government entities and not-for-profit organizations, which are PII controllers and/or PII processors processing PII within an ISMS.

Almost every organization processes Personally Identifiable Information (PII). Further, the quantity and types of PII processed is increasing, as is the number of situations where an organization needs to cooperate with other organizations regarding the processing of PII. Protection of privacy in the context of the processing of PII is a societal need, as well as the topic of dedicated legislation and/or regulation all over the world.

This course provides with a comprehensive knowledge on how ISO/IEC 27001:2013 based ISMS can be extended to protect the personal information dealt with by an organisation.

What you will learn?

  • Introduction to the standard

  • Relationship with ISO/IEC 27001 and ISO/IEC 27001

  • How ISO/IEC 27001 requirements and ISO/IEC 27002 guidelines can be extended for privacy management

  • What are the requirements to create a PIMS

  • What guidelines can be used to create a PIMS


Why you should get qualified as a PIMS LA?

  1. To understand in a systematic manner the requirements of a PIMS

  2. To assure a structured PIMS is in place in the organisation

  3. To acquire a formal knowledge on privacy auditing

  4. To prepare an organisation to face a privacy audit per ISO/IEC 27701 

  5. To demonstrate your capability as a PIMS Professional

Who should attend?

  • IT / Information Security Auditors

  • Privacy Auditors

  • Information Security Professionals

  • Privacy Professionals

  • IT Managers

  • Consultants

  • Legal Professionals

  • PII Controllers

  • PII Processors

  • DPOs

  • CISOs

  • Anyone wanting to audit a PIMS

Delivery approach:

  • Exercises

  • Role plays

  • Quizzes

  • Group discussions

  • Deliberations


Presented as a three days course for existing ISMS LA certificate holders and as a five days course for others.

What you get?

  • Course material - e-version

  • Training session delivered by an eminent instructor who is also a privacy practitioner and assessor

  • Certification examination

Course delivered online as instructor led live virtual course or class room session. Delivered across the globe. 


  • Existing ISMS LA certificate (for 3 days course)

  • Knowledge on information security and privacy concepts




Exam duration: 2 Hours

Exam mode: Paper based or online remotely proctored. 

Contact for further details. See the schedule here.

iso 27701 course in Bangalore india online live virtual online training course iso27701 lead auditor implementer privacy training online exam certification hyderabad mumbai delhi gurgaon noida chennai isaca data privacy certification gdpr ccpa european union pdpa singapore malaysia india irca tuv sud accredited course class room virtual training

bottom of page