ISO/IEC 27001 Information Security Online Internal Auditor Training Program

Course Description

With large data breaches becoming more frequent around the world, people are focusing their attention on the details of companies they work with. This includes information security management, or ISO/IEC 27001. ISO/IEC 27001 is the leading international standard for information security management.

ISO 27001 provides the framework to strong information security management that companies can use to illustrate a dedication to protecting customer, employee and corporate data. Worldwide, organizations implement and maintain ISO 27001 information security management systems (ISMS) to keep crucial information assets secure. The standard outlines a risk management process involving people, processes and IT systems, thereby providing a holistic approach to information security.

This two-day, instructor-led, online course begins with the understanding of the concept of Information Security Management, the requirements of ISO/IEC 27001:2013 certification standard, and its relation to the ISO 27000 series of standards for information security management. This Internal Auditor course is based on the principles of ISO 19011:2011. It is designed for those people who wish to understand and conduct internal audit assessments to the ISO/IEC 27001:2013 certification standard and its relation to the ISO 27000 series of standards for information security management.

Prior knowledge of the ISO/IEC 27002:2013 is required to excel in this training. Students receive a certificate of attendance for completing the training.

Course Benefits

Learners who successfully complete the course will be able to perform internal auditor activities and transfer internal auditor knowledge to offer corrective measures for problematic environmental management system processes.

THIS COURSE IS SPECIALLY DESIGNED FOR:

Management representatives, ISO/IEC 27001 ISMS Steering Committee members, lead ISMS auditors, internal ISMS auditors, personnel responsible for legal requirement updates, and ISO/IEC 27001 conformance.

Course Agenda

Day 1 - Module 1: Overview

• Introduction to information security management systems
• Objectives and benefits of an ISMS
• Key Principles and Concepts of the ISMS
• Code of practice ISO/IEC 27002:2013
• Certification specification ISO/IEC 27001:2013
• Certification to ISO/IEC 27001:2013
• The ISO 27000 series of standards
• Essentials of the Standard
• The ISMS Audit Planning
• The ISMS Audit Preparation
• Conversion Process and Timeline

Day 2 - Module 2: Audit Process

• Initiating an audit
• Document Review
• Audit Plan
• Audit Work Documents
• Opening Meeting
• Execute the audit
• Documenting Non-conformities
• Closing Meeting
• Audit Report
• Audit Follow-up  

Methodology

Online: Instructor-led

Learning Assessments

Attendees must attend both days and successfully complete the exam to receive the TÜV SÜD Academy Internal Auditor Certificate.

Course Materials

Learners must obtain a copy of the ISO standard to be referenced during the course. The standard may be purchased through the American National Standards Institute (ANSI) (www.ansi.org) and/or American Society for Quality (ASQ) (www.asq.org).

Prerequisites

Prior knowledge of the ISO/IEC 27002:2013 is required to excel in this training.

Duration

2 Days

Timing

9:00 AM – 5:00 PM ET

Add to Cart