ISO 28000 Training

Online Instructor-led (1 days)

Classroom (1 days)

Online Self-paced (8 hours)

ISO 28000 Foundation Training Exam

ISO 28000 Foundation Training Course Outline

Module 1: Introduction to Security Management Systems (SeMS)

  • Scope
  • Normative References
  • Terms and Definitions

Module 2: Context of the Organisation

  • Understanding the Organisation and its Context
  • Understanding the Needs and Expectations of Interested Parties
    • General
    • Legal, Regulatory and other Requirements
    • Principles
  • Determining the Scope of the Security Management System
  • Security Management System

Module 3: Leadership

  • Leadership and Commitment
  • Security Policy
    • Establishing the Security Policy
    • Security Policy Requirements
  • Roles, Responsibilities and Authorities

Show moredown
Explore Course Information image
Enquire now See dates & prices

DELIVERY METHOD

Online Instructor-ledOnline Self-pacedClassroomOnsite

Limited budget?

tick To help and support our clients we are providing a limited number of 250 daily discount codes. Hurry, first come, first served!
warning If you miss out, enquire to get yourself on the waiting list for the next day!
Enquire now for a daily discount

(203 remaining)

Who should attend this ISO 28000 Foundation Training?

This ISO 28000 Foundation Training is ideal for individuals with the basic knowledge of risk, security or compliance concepts is an advantage. It is particularly beneficial for:

  • Security Coordinator
  • Supply Chain Operations Assistant
  • Logistics and Warehouse Supervisor
  • Risk and Compliance Support Officer
  • Business Continuity Assistant
  • Quality and Security Assurance Technician
  • Security Management System Trainee

Prerequisites ISO 28000 ISO 28000 Foundation Training:

There are no formal prerequisites to attend this ISO 28000 Foundation Training. 

ISO 28000 Foundation Training Course Overview

ISO 28000 Foundation introduces the fundamental concepts and requirements of Security Management Systems for supply chains. It is important because it helps organisations understand how to identify, prevent and control security risks that can disrupt operations. For organisations, the training builds awareness of compliance duties, risk control measures and structured approaches for protecting assets and logistics activities. For individuals, it provides the essential knowledge needed to understand security principles, system components and key ISO 28000 clauses. From a career perspective, this training strengthens professional credibility and creates opportunities in security management, compliance, logistics and supply-chain support roles.

Delegates will learn how ISO 28000 is structured, why organisations implement Security Management Systems, and which requirements apply across context, leadership, planning, support, operations and performance evaluation. They will gain knowledge of risk-based thinking, security policy requirements, documented information, control measures and continual improvement. The course helps delegates understand how to evaluate security risks, recognise vulnerabilities and understand how a compliant SeMS protects people, cargo, information and infrastructure throughout the supply chain.

ISO 28000 Foundation Training Course Objectives

  • To introduce the purpose and structure of ISO 28000 Security Management
  • To explain key terms, definitions and Security Management System requirements
  • To improve understanding of risk identification and security control planning
  • To highlight leadership responsibilities and security policy implementation requirements
  • To demonstrate the importance of documented information and communication processes
  • To build awareness of operational controls that protect supply-chain activities

After completing the course, delegates will be able to interpret ISO 28000 requirements and explain how a Security Management System operates within an organisation. They will understand how risks are assessed, how policies are applied and how security controls support resilience in supply chains. Delegates will also be able to describe the roles of leadership, documentation, monitoring and continual improvement within a compliant system.

Show moredown
Explore Course Information image
Enquire now See dates & prices

What’s Included in this ISO 9001 Lead Auditor Course?

  • ISO 28000 Foundation Training Examination
  • World-Class Training Sessions from Experienced Instructors
  • ISO 28000 Foundation Training Certificate
  • Digital Delegate Pack

Show moredown
Explore Course Information image
Enquire now See dates & prices

ISO 28000 Foundation Training Exam Information

To achieve the ISO 28000 Foundation Training, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice 
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 50%, or 15/30 Marks 
  • Duration: 40 Minutes  
  • Open Book/ Closed Book: Closed Book 

Show moredown
Explore Course Information image
Enquire now See dates & prices

Online Instructor-led (5 days)

Classroom (5 days)

Online Self-paced (40 hours)

ISO 28000 Lead Auditor Training Exam

ISO 28000 Lead Auditor Training Course Outline

Module 1: Introduction to Security Management Systems (SeMS)

  • Scope
  • Normative References
  • Terms and Definitions

Module 2: Context of the Organisation

  • Understanding the Organisation and its Context
  • Understanding the Needs and Expectations of Interested Parties
    • General
    • Legal, Regulatory and other Requirements
    • Principles
  • Determining the Scope of the Security Management System
  • Security Management System

Module 3: Leadership

  • Leadership and Commitment
  • Security Policy
    • Establishing the Security Policy
    • Security Policy Requirements
  • Roles, Responsibilities and Authorities

Module 4: Planning

  • Actions to Address Risks and Opportunities
    • General
    • Determining Security-Related Risks and Identifying Opportunities
    • Addressing Security-Related Risks and Exploiting Opportunities
  • Security Objectives and Planning to Achieve Them
    • Establishing Security Objectives
    • Determining Security Objectives
  • Planning of Changes

Module 5: Support

  • Resources
  • Competence
  • Awareness
  • Communication
  • Documented Information
    • General
    • Creating and Updating Documented Information
    • Control of Documented Information

Module 6: Operation

  • Operational Planning and Control
  • Identification of Processes and Activities
  • Risk Assessment and Treatment
  • Controls
  • Security Strategies, Procedures, Processes and Treatments
    • Identification and Selection of Strategies and Treatments
    • Resource Requirements
    • Implementation of Treatments
  • Security Plans
    • General
    • Response structure
    • Warning and communication
    • Content of the security plans
    • Recovery

Module 7: Performance Evaluation

  • Monitoring, Measurement, Analysis and Evaluation
  • Internal Audit
    • General
    • Internal Audit Programme
  • Management Review
    • General
    • Management Review Inputs
    • Management Review Results

Module 8: Improvement

  • Continual Improvement
  • Nonconformity and Corrective Action

Show moredown
Explore Course Information image
Enquire now See dates & prices

DELIVERY METHOD

Online Instructor-ledOnline Self-pacedClassroomOnsite

Limited budget?

tick To help and support our clients we are providing a limited number of 250 daily discount codes. Hurry, first come, first served!
warning If you miss out, enquire to get yourself on the waiting list for the next day!
Enquire now for a daily discount

(203 remaining)

Who should attend this ISO 28000 Lead Auditor?

This ISO 28000 Lead Auditor Course is ideal for individuals with the basic knowledge of management system concepts. It is particularly beneficial for:

  • Lead Security Auditor
  • Supply Chain Security Manager
  • Risk and Compliance Officer
  • Logistics and Operations Manager
  • Quality and Security Assurance Manager
  • Business Continuity and Resilience Specialist
  • Security Management System Consultant

Prerequisites ISO 28000 Lead Auditor Training

There are no formal prerequisites to attend this ISO 28000 Lead Auditor Training. 

ISO 28000 Lead Auditor Training Course Overview

ISO 28000 Lead Auditor certification qualifies professionals to assess, audit, and verify the effectiveness of Security Management Systems within global supply chains. It is important because it ensures organisations implement internationally recognised controls to manage security risks, prevent disruptions, and maintain business continuity. For organisations, this training strengthens compliance, reduces vulnerabilities, improves risk awareness, and enhances supply-chain reliability. For individuals, it develops advanced auditing skills, a strong understanding of ISO 28000 requirements, and the ability to evaluate security controls with confidence. From a career perspective, the qualification opens opportunities in auditing, compliance, risk management, and supply-chain security roles across multiple industries worldwide.

During this ISO 28000 Lead Auditor training, delegates will learn how to interpret and apply the requirements of ISO 28000, understand the structure of a Security Management System, and assess organisational risk controls within supply chains. They will gain a solid understanding of auditing methodologies, audit planning, reporting, and follow-up activities based on ISO 19011 principles. The course also covers leadership responsibilities, performance evaluation, corrective actions, and continual improvement.

ISO 28000 Lead Auditor Course Objectives:

  • To understand the purpose and structure of ISO 28000
  • To interpret Security Management System requirements accurately
  • To plan, prepare and conduct internal and external audits
  • To collect objective evidence and evaluate compliance
  • To identify, classify and document nonconformities effectively
  • To prepare professional audit reports and communicate findings

After attending this training, delegates will be able to conduct ISO 28000 audits from planning through reporting and follow-up, assess system effectiveness, and verify corrective actions using recognised audit methodologies. They will be capable of evaluating risks, reviewing security controls, interviewing personnel, presenting audit results to management, and supporting organisations in achieving or maintaining certification.

Show moredown
Explore Course Information image
Enquire now See dates & prices

What’s Included in this ISO 28000 Lead Auditor Course?

  • ISO 28000 Lead Auditor Examination
  • World-Class Training Sessions from Experienced Instructors
  • ISO 28000 Lead Auditor Certificate
  • Digital Delegate Pack

Show moredown
Explore Course Information image
Enquire now See dates & prices

ISO 28000 Lead Auditor Exam Information

To achieve the ISO 28000 Lead Auditor Training, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice 
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 50%, or 15/30 Marks 
  • Duration: 40 Minutes  
  • Open Book/ Closed Book: Closed Book 

Show moredown
Explore Course Information image
Enquire now See dates & prices

Online Instructor-led (3 days)

Classroom (3 days)

Online Self-paced (24 hours)

ISO 28000 Lead Implementer Training Exam

ISO 28000 Lead Implementer Training Course Outline

Module 1: Introduction to Security Management Systems (SeMS)

  • Scope
  • Normative References
  • Terms and Definitions

Module 2: Context of the Organisation

  • Understanding the Organisation and its Context
  • Understanding the Needs and Expectations of Interested Parties
    • General
    • Legal, Regulatory and other Requirements
    • Principles
  • Determining the Scope of the Security Management System
  • Security Management System

Module 3: Leadership

  • Leadership and Commitment
  • Security Policy
    • Establishing the Security Policy
    • Security Policy Requirements
  • Roles, Responsibilities and Authorities

Module 4: Planning

  • Actions to Address Risks and Opportunities
    • General
    • Determining Security-Related Risks and Identifying Opportunities
    • Addressing Security-Related Risks and Exploiting Opportunities
  • Security Objectives and Planning to Achieve Them
    • Establishing Security Objectives
    • Determining Security Objectives
  • Planning of Changes

Module 5: Support

  • Resources
  • Competence
  • Awareness
  • Communication
  • Documented Information
    • General
    • Creating and Updating Documented Information
    • Control of Documented Information

Module 6: Operation

  • Operational Planning and Control
  • Identification of Processes and Activities
  • Risk Assessment and Treatment
  • Controls
  • Security Strategies, Procedures, Processes and Treatments
    • Identification and Selection of Strategies and Treatments
    • Resource Requirements
    • Implementation of Treatments
  • Security Plans
  • General
  • Response structure
  • Warning and communication
  • Content of the security plans
  • Recovery

Show moredown
Explore Course Information image
Enquire now See dates & prices

DELIVERY METHOD

Online Instructor-ledOnline Self-pacedClassroomOnsite

Limited budget?

tick To help and support our clients we are providing a limited number of 250 daily discount codes. Hurry, first come, first served!
warning If you miss out, enquire to get yourself on the waiting list for the next day!
Enquire now for a daily discount

(203 remaining)

Who should attend this ISO 28000 Lead Implementer Training?

This ISO 28000 Lead Implementer Training Course is ideal for individuals with the basic knowledge of management systems or security concepts is helpful. It is particularly beneficial for:

  • Security Management System Lead Implementer
  • Supply Chain Security Manager
  • Compliance and Risk Management Officer
  • Business Continuity and Resilience Manager
  • Logistics and Operations Security Coordinator
  • Security and Compliance Consultant
  • Governance, Risk and Compliance (GRC) Specialist

Prerequisites ISO 28000 Lead Implementer Training:

There are no formal prerequisites to attend this ISO 28000 Lead Implementer Training. 

ISO 28000 Lead Implementer Training Course Overview

ISO 28000 Lead Implementer is a professional training programme designed to teach participants how to establish, implement, maintain, and improve a Security Management System in line with ISO 28000. It is important because organisations rely on robust security controls to protect assets, ensure supply-chain resilience, and maintain compliance with international requirements. For organisations, this training strengthens risk prevention, improves operational control, and supports effective certification readiness. For individuals, it provides advanced knowledge of SeMS governance, documentation, risk treatment, performance evaluation, and continual improvement. From a career perspective, the qualification enhances professional credibility and opens opportunities in security management, compliance, supply-chain operations, and ISO implementation consultancy.

Delegates will learn how to interpret ISO 28000 requirements and plan a structured implementation of a Security Management System within an organisation. The course covers risk assessment, development of security policies, treatment planning, operational controls, communication processes, documentation management, and continual improvement. Delegates will learn how to design security strategies, develop response plans, support internal audits, and prepare an organisation for certification.

ISO 28000 Lead Implementer Training Course Objectives

  • To explain ISO 28000 requirements and Security Management principles
  • To guide delegates in planning a structured SeMS implementation
  • To teach development of policies, objectives, and documentation
  • To demonstrate risk assessment and security treatment processes
  • To support effective operational controls and response planning
  • To enhance monitoring, measurement, and continual improvement activities

After attending this training, delegates will be able to lead the implementation and maintenance of a Security Management System in line with ISO 28000. They will be able to apply risk-based thinking, define objectives, develop documentation, implement operational controls, and support internal and external audit processes. Delegates will understand how to manage corrective actions, analyse performance data, and promote continual improvement.

Show moredown
Explore Course Information image
Enquire now See dates & prices

What’s included in this ISO 28000 Lead Implementer Certification Course?

  • ISO 28000 Lead Implementer Examination
  • World-Class Training Sessions from Experienced Instructors
  • ISO 28000 Lead Implementer Certificate
  • Digital Delegate Pack

Show moredown
Explore Course Information image
Enquire now See dates & prices

ISO 28000 Lead Implementer Training:

To achieve the ISO 28000 Lead Implementer Training, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice 
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 50%, or 15/30 Marks 
  • Duration: 40 Minutes  
  • Open Book/ Closed Book: Closed Book 
     

Show moredown
Explore Course Information image
Enquire now See dates & prices

Online Instructor-led (2 days)

Classroom (2 days)

Online Self-paced (16 hours)

ISO 28000 Internal Auditor Training Exam

ISO 28000 Internal Auditor Training Course Outline

Module 1: Introduction to Security Management Systems (SeMS)

  • Scope
  • Normative References
  • Terms and Definitions

Module 2: Context of the Organisation

  • Understanding the Organisation and its Context
  • Understanding the Needs and Expectations of Interested Parties
    • General
    • Legal, Regulatory and other Requirements
    • Principles
  • Determining the Scope of the Security Management System
  • Security Management System

Module 3: Leadership

  • Leadership and Commitment
  • Security Policy
    • Establishing the Security Policy
    • Security Policy Requirements
  • Roles, Responsibilities and Authorities

Module 4: Planning

  • Actions to Address Risks and Opportunities
    • General
    • Determining Security-Related Risks and Identifying Opportunities
    • Addressing Security-Related Risks and Exploiting Opportunities
  • Security Objectives and Planning to Achieve Them
    • Establishing Security Objectives
    • Determining Security Objectives
  • Planning of Changes

Module 5: Support

  • Resources
  • Competence
  • Awareness
  • Communication
  • Documented Information
    • General
    • Creating and Updating Documented Information
    • Control of Documented Information

Show moredown
Explore Course Information image
Enquire now See dates & prices

DELIVERY METHOD

Online Instructor-ledOnline Self-pacedClassroomOnsite

Limited budget?

tick To help and support our clients we are providing a limited number of 250 daily discount codes. Hurry, first come, first served!
warning If you miss out, enquire to get yourself on the waiting list for the next day!
Enquire now for a daily discount

(203 remaining)

Who should attend this ISO 28000 Internal Auditor Training?

This ISO 28000 Internal Auditor Training Course is ideal for individuals with the basic understanding of organisational processes or supply-chain operations is helpful. It is particularly beneficial for:

  • Internal Security Auditor
  • Security Compliance Officer
  • Supply Chain Security Specialist
  • Risk and Assurance Coordinator
  • Logistics and Operations Supervisor
  • Security Management System Coordinator
  • Quality and Compliance Auditor

Prerequisites ISO 28000 Internal Auditor Training:

There are no formal prerequisites to attend this ISO 28000 Internal Auditor Training. 

ISO 28000 Internal Auditor Training Course Overview

ISO 28000 Internal Auditor Training teaches participants how to assess, evaluate and report on the effectiveness of Security Management Systems within a supply-chain environment. It is important because organisations depend on accurate internal audits to detect weaknesses, prevent security breaches and maintain compliance with ISO 28000 requirements. For organisations, this training strengthens risk control, improves audit readiness, and supports continual improvement of security performance. For individuals, it builds practical audit knowledge, documentation skills and an understanding of how security controls should operate in real environments. From a career perspective, the qualification enhances credibility and opens opportunities in security management, auditing, compliance and risk-based roles.

Delegates will learn how ISO 28000 is structured, how a Security Management System operates and why internal audits are required to maintain compliance and improvement. They will study audit principles, audit planning, document review, interviewing techniques, evidence collection and reporting requirements. The training covers risk-based thinking, nonconformity identification, corrective action follow-up and the responsibilities of an internal auditor aligned with ISO 19011.

ISO 28000 Internal Auditor Training Course Objectives

  • To introduce key ISO 28000 Security Management requirements
  • To explain internal audit principles and auditor responsibilities
  • To demonstrate methods for gathering and evaluating audit evidence
  • To guide reporting of findings and nonconformities clearly
  • To support verification of corrective actions and improvements
  • To improve organisational readiness for certification activities

After attending this training, delegates will be able to plan, conduct and report internal audits in accordance with ISO 28000 and ISO 19011 guidelines. They will confidently review documentation, interview staff, identify security risks, recognise nonconformities and present audit findings to management. Delegates will know how to recommend corrective actions, verify their effectiveness and support continual improvement of the Security Management System.

Show moredown
Explore Course Information image
Enquire now See dates & prices

What’s included in this ISO 28000 Internal Auditor Certification Course?

  • ISO 9001 Lead Implementer Examination
  • World-Class Training Sessions from Experienced Instructors
  • ISO 9001 Lead Implementer Certificate
  • Digital Delegate Pack

Show moredown
Explore Course Information image
Enquire now See dates & prices

ISO 28000 Internal Auditor Training:Exam Information

To achieve the ISO 28000 Internal Auditor Training, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice 
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 50%, or 15/30 Marks 
  • Duration: 40 Minutes  
  • Open Book/ Closed Book: Closed Book 

Show moredown
Explore Course Information image
Enquire now See dates & prices

Not sure which course to choose?

Speak to a training expert for advice if you are unsure of what course is right for you. Give us a call on 01344203999 or Enquire.

Enquire now

ISO 28000 Training FAQs

ISO 28000 is an international standard that outlines requirements for establishing, implementing, maintaining, and improving a Security Management System (SeMS) within supply chain operations.

This course is ideal for security managers, supply chain professionals, auditors, risk managers, logistics managers, compliance officers, consultants, and anyone involved in protecting supply chain security.

The training aims to provide knowledge of ISO 28000 requirements, risk management practices, security planning, implementation of controls, and audit preparation.

It helps organisations reduce security risks, protect goods and people, prevent supply chain disruptions, meet regulatory requirements, and build trust with partners and customers.

You learn the principles of security management, risk assessment, incident preparedness, documentation, continual improvement, and how to apply ISO 28000 guidelines across supply chain environments.

Individuals gain specialised knowledge, improve problem-solving skills, enhance job profiles, and boost their ability to support organisational security compliance and resilience.

Organisations benefit from improved security controls, reduced risk, enhanced operational continuity, efficient crisis response, and stronger stakeholder confidence.

Please see our ISO 28000 Training available in the United Kingdom

The Knowledge Academy is one of the Leading global training provider for ISO 28000 Training.

The training fees for ISO 28000 Training in the United Kingdom starts from £2495

Show more down

Why we're the go to training provider for you

icon

Best price in the industry

You won't find better value in the marketplace. If you do find a lower price, we will beat it.

icon

Trusted & Approved

Recognised by leading certification bodies, we deliver training you can trust.

icon

Many delivery methods

Flexible delivery methods are available depending on your learning style.

icon

High quality resources

Resources are included for a comprehensive learning experience.

barclays Logo
deloitte Logo
Thames Water Logo

"Really good course and well organised. Trainer was great with a sense of humour - his experience allowed a free flowing course, structured to help you gain as much information & relevant experience whilst helping prepare you for the exam"

Joshua Davies, Thames Water

santander logo
bmw Logo
Google Logo

Looking for more information on ISO 28000 Training

cross

Exclusive Deals Big Savings This March!

Grab up to 40% OFF and level up your skills this spring! march-madness

WHO WILL BE FUNDING THE COURSE?

We cannot process your enquiry without contacting you, please tick to confirm your consent to us for contacting you about your enquiry.

By submitting your details you agree to be contacted in order to respond to your enquiry.

What are you looking for?
close

close

Or select from our popular topics

Press esc to close

close

close

Talk to a learning expert

Fill out your contact details below and our training experts will be in touch.

alertIf you wish to make any changes to your course, please log a ticket and choose the category ‘booking change’

Fill out your  contact details  below

WHO WILL BE FUNDING THE COURSE?

+44

By submitting your details you agree to be contacted in order to respond to your enquiry

close

close

Press esc to close

close

close

Thank you for your enquiry!

One of our training experts will be in touch shortly to go over your training requirements.

Close
close

close

Press esc to close

close close

Back to course information

Thank you for your enquiry!

One of our training experts will be in touch shortly to go overy your training requirements.

Close
close close

Thank you for your enquiry!

One of our training experts will be in touch shortly to go over your training requirements.

Close