Choose another country to see content specific to your location

//Select Country

ISO/IEC 27001 Information Security Internal Auditor Training

Sub heading

Course Description

With large data breaches becoming more frequent around the world, people are focusing their attention on the details of companies they work with. This includes information security management, or ISO/IEC 27001.

ISO/IEC 27001 is the leading international standard for information security management. ISO 27001 provides the framework to strong information security management that companies can use to illustrate a dedication to protecting customer, employee and corporate data. Worldwide, organizations implement and maintain ISO 27001 information security management systems (ISMS) to keep crucial information assets secure. The standard outlines a risk management process involving people, processes and IT systems, thereby providing a holistic approach to information security.

This two-day course begins with the understanding of the concept of Information Security Management, the requirements of ISO/IEC 27001:2013 certification standard, and its relation to the ISO 27000 series of standards for information security management. This Internal Auditor course is based on the principles of ISO 19011:2011. It is designed for those people who wish to understand and conduct internal audit assessments to the ISO/IEC 27001:2013 certification standard and its relation to the ISO 27000 series of standards for information security management.

Course Benefits

Learners who successfully complete the course will be able to perform internal auditor activities and transfer internal auditor knowledge to offer corrective measures for problematic environmental management system processes.

Who Will Benefit?

This course has been designed for management representatives, ISO/IEC 27001 ISMS Steering Committee members, lead ISMS auditors, internal ISMS auditors, personnel responsible for legal requirement updates, and ISO/IEC 27001 conformance.

Course Agenda

Day 1 - Module 1: Overview

Introduction to information security management systems

  • Objectives and benefits of an ISMS
  • Key Principles and Concepts of the ISMS
  • Code of practice ISO/IEC 27002:2013
  • Certification specification ISO/IEC 27001:2013
  • Certification to ISO/IEC 27001:2013
  • The ISO 27000 series of standards
  • Essentials of the Standard
  • The ISMS Audit Planning
  • The ISMS Audit Preparation• Conversion Process and Timeline

Day 2 - Module 2: Audit Process

  • Initiating an audit
  • Document Review
  • Audit Plan
  • Audit Work Documents
  • Opening Meeting
  • Execute the audit
  • Documenting Non-Conformities
  • Closing Meeting
  • Audit Report
  • Audit Follow-up

Prerequisites

Prior knowledge of the ISO/IEC 27002:2013is required to excel in this training.

Learning Assessments

Attendees must attend both days and successfully complete the exam to receive the TÜV SÜD Academy Internal Auditor Certificate.

Duration

2 Days

Related Courses

E-Learning: EU General Data Protection Regulation (GDPR) Awareness

 

Add to Cart

Next Steps

Select Your Location

Global

Americas

Asia

Europe

Middle East and Africa