ISO/IEC 27001:2013 INFORMATION SECURITY MANAGEMENT SYSTEMS INTERNAL AUDITOR TRAINING

Gain the ability to assess an organisation’s capability to manage its ISMS

ABOUT THE COURSE

The Information Security Management Systems, or ISMS, standard specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organisation. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organisation.

This two-day course begins with the understanding of the concept of Information Security Management, the requirements of ISO/IEC 27001:2013 certification standard, and its relation to the ISO 27000 series of standards for information security management. This Internal Auditor course is based on the principles of ISO 19011:2011. It is designed for those people who wish to understand and conduct internal audit assessments to the ISO/IEC 27001:2013 certification standard and its relation to the ISO 27000 series of standards for information security management.

Duration: 2 - day course 

The course consists of the following 2 parts:

  • ISO/IEC 27001:2013 Information Security Management System Awareness
  • ISO/IEC 27001:2013 Information Security Management System Audit ProcessISO 27001 Roadmap - Internal Auditor

WHAT WILL YOU LEARN FROM THE COURSE?

At the end of this course, participants will be able to:

To gain an understanding of the ISO/IEC 27001:2013 requirements
prepare, conduct and follow-up on ISO/IEC 27001:2013 audit activities
Gain the skills to assess an organisation’s capability to manage its ISMS
Write factual audit reports

Note: The purpose of the course ensures a comprehensive transfer of knowledge and understanding on internal audit process with respect to ISO/IEC 27001:2013 requirements.

Topics to be covered in this course include:

Introduction to information security management systems
Objectives and benefits of an ISMS
Key Principles and Concepts of the ISMS
Code of practice ISO/IEC 27002:2013
Certification specification ISO/IEC 27001:2013
Certification to ISO/IEC 27001:2013
The ISO 27000 series of standards
Essentials of the Standard
The ISMS Audit Planning
The ISMS Audit Preparation
Conducting an ISMS Audit
Recording the results
Root Cause Identification
Presenting reports
Conducting Audit Follow-Up

WHAT IS THE COURSE METHODOLOGY?

Participants will learn through lectures, case studies, group exercises and discussions.

WHO SHOULD TAKE THE COURSE?

This course is specially designed for:

managers or executives responsible for the security and confidentiality of their business-critical information
those people who wish to understand and conduct internal audit assessments to the ISO 27001:2005 certification standard and its relation to the emerging ISO 27000 series of standards for information security management

Prerequisite: None

WHO IS THE COURSE ADVISOR?

The course content and structure are designed by the domain experts from TÜV SÜD.

With immense experience and knowledge in the relevant standards, our team of product specialists and technical experts at TÜV SÜD, developed the course content based on current business landscape and market requirements.

  • WHAT ARE THE BENEFITS OF ENROLLING IN THIS COURSE?
    • World-class training – by learning from TÜV SÜD’s industry experts and training specialists

    • Interactive learning style – with interactive formats such as lectures, illustrations and simulations are used

    • Networking opportunity – where you can meet and build network with like-minded individuals at our instructor-led training

    • Gain a competitive edge – by getting trained by experts known in the fields of safety, security and sustainability

  • FAQs
    1. How do I enroll for the course?
      To enroll, click here and fill out the form accordingly.
    2. What is the course methodology?
      Participants will learn through role plays, case studies, group exercises, scenarios and discussions.
    3. Are there any tests in the middle of the course?
      There are no in-between assessments, but case studies will be included in the course.
    4. Can I get a refund if I cancel my enrollment?
      Yes, please contact us at training.sg@tuvsud.com for more details. Terms and conditions apply.
    5. Can I also attend E-learning courses on top of attending the instructor-led course?
      Yes, you can register to any e-learning courses. If you have special requirements, please contact us at training.sg@tuvsud.com  and we can customise a suitable package for you.
    6. Upon completion of the course, would I get a certificate for completion?
      Yes, you will receive a certificate of completion at the end of the course.
    7. Who developed the course and what are their qualifications?
      The course content and structure are designed by the domain experts from TÜV SÜD. With immense experience and knowledge in the relevant standards, our team of product specialists and technical experts at TÜV SÜD, developed the course content based on current business landscape and market requirements. The experts also undergo relevant upskilling programmes, benefitting from TÜV SÜD’s 150 years of expertise and global heritage. 

    To contact someone from TÜV SÜD, you may email us at training.sg@tuvsud.com .

    To know more about TÜV SÜD, please click here.

Next Steps