First, it is important to note that speed does not get you points on this exam, so you

should use all the time you have to ensure your answers are correct and well based.

ISO 27001 Lead Auditor exam consists of theoretical (based on requirements of both ISO
27001 and ISO 19011) and subjective questions (where you have to analyze situations
and provide an answer based on ISO 27001 requirements). Considering that, you should
go first for the theoretical ones, so you have more time to carefully analyze the case
scenarios.

In these scenarios, you have to evaluate if the situation raises a non-conformity and write
a proper statement. While pointing out a non-conformity when there is no enough
evidence is partially acceptable (depending on your justifications), raising a non-
conformity where the situation is ok is an error that can make you fail the exam.

You'll be able to respond easily to theoretical questions, and see what scenario-based
questions look like if you attend a course.

The ISO 27001 Lead Auditor Exam requires you to attend the 5-day training session.
Being a certified lead auditor and a trainer for ISO 27001:2013, I can give you the
following tips:

 Make notes while the training is going. You memorize more when you write in
your own words.
 Understand the concept instead of gulpping the topics.
 Know your standard. Remember the high-level structure and control objectives.
This will help you in navigating the standard faster.
 Do subjective type questions before objective type.
 In scenario based questions, there will always be atleast 1 NC and 1
Observation/ Need more investigation. Eliminate them before performing
them.
 You will get the copy of standard at the time of exam, so stop mugging up the
standard.