DU&T Consulting

Cognicert UK Limited http://cognicert.com

ISO 28007 is widely known for providing the Requirements for Ships and Marine Technology for Private Maritime Security Companies. ISO 28007 was introduced to address the safety and legal implications of employing PCASP through a risk-based approach. It provides guidelines and sector-specific requirements that PMSC, who already comply with ISO 28000, can implement to demonstrate that they provide appropriate PCASP services on board ships.  ISO 28007 builds on ISO 28000 to help you design and implement your maritime security management controls like deploying armed guards as well identifying the impact of your operation and how to prevent negative impact.


The “ISO 28007:2015 Lead Auditor” course provides comprehensive training for participants to be able to:

  • Understand to audit each and every ISO 28007:2015   requirements
  • Learn fundamental auditing skills;
  • Implement methods to comply with the ISO 28007:2015
  • Audit process and techniques
  • Improve Auditor’s skills and techniques
  • Examine the requirements of ISO 28007 from an Auditor Perspective
  • Write Audit reports process and follow up corrective actions
  • Plan, Lead, Conduct and report an ISO 28007 audit;
  • Effectively verify root cause analysis as part of the ISO 28007 Management procedure on corrective action


  • Persons responsible for conducting internal audits according to ISO 28007:2015 requirements
  • Persons involved in the ISO 28007:2015 certification audit process


Day 1

  • Background and Development of ISO 28007:2015
  • Interpreting the Requirements of the ISO 28007:2015  Standard
  • The Process Management Approach
  • COTO, Stakeholder, Risk and Opportunity Management
  • Management System Planning

Day 2

  • Document Management
  • Operations managements
  • Resource Management
  • Sourcing and Outsourcing
  • Process Improvement
  • Monitoring and Evaluation

Day 3

  • Fundamentals of Auditing
  • Principles of Auditing according to ISO 19011
  • Managing Audit Program
  • Audit Evidences
  • Audit Process
  • Audit Planning Preparation

Day 4

  • Leading an audit
  • Conducting Onsite Audit
  • Conducting Audit Follow-Up
  • The Root Cause Analysis Process
  • Certification Audit processes and criteria

Day 5

  • Revision and
  • Examination

Duration: 5 days

Training Methodologies

  • Case Study
  • Individual Exercises
  • Role Play
  • Group Exercises
  • Group Presentation
  • Examination


DU&T Consulting