ISO 27019:2017 - Certified Lead Auditor

Certification Overview

ISO 27019:2017 - Certified Lead Auditor

Exam Code: ISO27019LA

ISO/IEC 27019 is a set of guiding principles for information security management of the process control systems (PCS) used in the energy utility sector.

The main aim of the document is to increase the breadth of the ISO/IEC to the automation technology and PCS domain. This is to provide a specific and standardised Information Security Management System (ISMS) to protect the hardware and software technology systems responsible for monitoring and controlling the generation, transmission, storage, and distribution of oil, gas, electric power, and heat, among other energy utilities. ISO and IEC first published ISO 27019 in 2013 as a Technical Report (TR), made by fast-tracking a DIN standard. In 2017, a second edition of the standard was published, making it a full International Standard in harmony with the 2013 version of ISO 27001 and ISO 27002. So, why is ISO 27019 so important?

Exam Information

The exam comprises of 100 Multiple Choice Questions out of which the candidate needs to score 70% (70 out of 100 correct) to pass the exam.

Exams are online and proctored based, using a webcam and a reliable internet connection exams can be taken anywhere and anytime.

The total duration of the exam is 2 hours (120 Minutes).

No external sources of information may be accessed during the exam held via ProctorU. Further details of the materials permitted are provided:

  • Identification Proof.
  • If a Candidate does not pass the exam in the second (2nd) attempt, the candidate must wait for a period of at least fourteen (14) calendar days from the date of their attempt to retake the exam for third (3rd) time or any subsequent time.
  • The exam can be taken any number of times.

The ISO 27019:2017 - Certified Lead Auditor Certificate is valid for life.

Displaying your certificate

  • Remember, when labeling a product or system as certified to an ISO standard:
  • Don't say: "ISO certified" or "ISO certification"
  • DO say: "ISO 9001:2008 certified" or "ISO 9001:2008 certification" (for example).



Some prior knowledge of ISO 27019, ISO 27001 and 270002 is recommended.

Course Outline

Module Information

  • Foundation
  • Information security policies
  • Organization of information security
  • Human resource security
  • Asset management
  • Access control
  • Cryptography
  • Physical and environmental security
  • Operations security
  • Communications security
  • System acquisition, development and maintenance
  • Supplier relationships
  • Information security incident management
  • Information security aspects of business continuity management
  • Compliance
  • Energy utility industry specific reference control objectives and controls

Target Audience

Candidates seeking career inĀ Information Security Management Controls for Energy Utility Process Controls

Registration Process for E-Course and Exam


  • Validity: 180 Days
  • Price: 170 USD
  • Please Read Carefully:

    1) Please Purchase the Second Voucher from our Voucher Store to Schedule the exam via ProctorU.

    2) One Voucher can be used by one person, one time, for one exam discount/fee only.

Visit E-Voucher Store

Exam Registration

  • To Register for an Exam
Click Here