Security-Minded Approach to Information Management
The LICQual ISO 19650-5:2020 – Security-Minded Approach to Information Management Lead Auditor course is a specialized program designed to equip learners with the expertise to audit digital information management practices with a strong focus on security. Based on ISO 19650-5:2020, the course addresses the secure handling of sensitive information across the lifecycle of built assets, supporting effective risk mitigation in construction and infrastructure environments.
Learners gain a comprehensive understanding of how security principles are integrated into information management systems, including threat identification, asset classification, stakeholder responsibilities, and risk control measures. The course emphasizes auditing security-focused information workflows within BIM-enabled environments to ensure compliance and resilience.
Through practical audit scenarios, case-based learning, and structured exercises, learners develop skills in audit planning, evidence evaluation, reporting, and follow-up. On completion, learners achieve a globally recognized LICQual certification, demonstrating the capability to lead security-minded information management audits and strengthen organizational trust, compliance, and information protection.
Course Overview
Qualification Title
LICQual ISO 19650-5:2020 – Security-Minded Approach to Information Management Lead Auditor
Total Units
6
Total Credits
40
GLH
120
Qualification #
LICQ2200436
Qualification Specification
To enroll in the LICQual ISO 19650-5:2020 – Security-Minded Approach to Information Management Lead Auditor applicants must meet the following criteria:
|
Qualification# |
Unit Title |
Credits |
GLH |
|---|---|---|---|
|
LICQ2200436-1 |
Overview of ISO 19650-5 and Security Principles |
8 |
24 |
|
LICQ2200435-2 |
Security Risk Assessment and Threat Management |
8 |
24 |
|
LICQ2200436-3 |
Audit Planning and Preparation for Security Compliance |
6 |
18 |
|
LICQ2200436-4 |
Auditing Security Controls in the Information Management Process |
6 |
18 |
|
LICQ2200436-5 |
Conducting Lead Audits – Techniques and Fieldwork |
6 |
18 |
|
LICQ2200436-6 |
Reporting, Follow-Up, and Continuous Improvement in Security-Minded Auditing |
6 |
18 |
By the end of this course, Applicants will be able to:
Overview of ISO 19650-5 and Security Principles
- Explain the purpose, scope, and key concepts of ISO 19650-5:2020 related to security-minded information management.
- Describe the relationship between ISO 19650-5 and other relevant security and audit standards.
- Understand the fundamental principles of securing digital asset information within construction and infrastructure projects.
Security Risk Assessment and Threat Management
- Identify common security risks and threats affecting information management in asset projects.
- Apply risk assessment methodologies to analyze and mitigate security vulnerabilities.
- Develop strategies to manage security threats within the framework of ISO 19650-5.
Audit Planning and Preparation for Security Compliance
- Create detailed audit plans focusing on security control verification and compliance assessment.
- Review and evaluate Security Information Requirements (SIR) and Common Data Environment (CDE) policies effectively.
- Define audit scope, objectives, and criteria specific to security-minded auditing under ISO 19650-5.
Auditing Security Controls in the Information Management Process
- Assess technical and organizational security controls implemented in information management systems.
- Evaluate access controls, data classification schemes, and secure information sharing practices.
- Verify compliance with security procedures designed to protect data confidentiality, integrity, and availability.
Conducting Lead Audits – Techniques and Fieldwork
- Apply professional auditing techniques to collect evidence, conduct interviews, and observe security practices.
- Identify and document nonconformities and security weaknesses according to ISO 19650-5 requirements.
- Demonstrate auditor professionalism, ethics, and objectivity throughout the audit process.
Reporting, Follow-Up, and Continuous Improvement in Security-Minded Auditing
- Prepare clear, comprehensive audit reports with actionable security risk findings and recommendations.
- Manage corrective actions and ensure effective follow-up to address audit findings.
- Promote continual improvement in information security management aligned with ISO 19650-5 and related standards.
This diploma is ideal for:
- Professionals responsible for leading or conducting audits related to information security in construction and asset management projects
- Information security managers and officers working within BIM, digital construction, or facilities management environments
- Auditors seeking to specialize in ISO 19650-5:2020 standards and security-minded information management
- Project managers and coordinators involved in managing digital asset information security and compliance
- Compliance officers and risk managers focused on safeguarding sensitive project data throughout asset lifecycles
- Consultants and advisors providing expertise on secure information governance and audit best practices
Assessment and Verification
All units within this qualification are subject to internal assessment by the approved centre and external verification by LICQual. The qualification follows a criterion-referenced assessment approach, ensuring that learners meet all specified learning outcomes.
To achieve a ‘Pass’ in any unit, learners must provide valid, sufficient, and authentic evidence demonstrating their attainment of all learning outcomes and compliance with the prescribed assessment criteria. The Assessor is responsible for evaluating the evidence and determining whether the learner has successfully met the required standards.
Assessors must maintain a clear and comprehensive audit trail, documenting the basis for their assessment decisions to ensure transparency, consistency, and compliance with quality assurance requirements.
