This 2-day CQI IRCA certified course provides delegates with the knowledge and skills required to audit an Information Security Management System (ISMS).
The ISO 27001 Internal Auditor course is designed to provide delegates with an understanding of the requirements of auditing information security management systems (ISMS). The course teaches delegates the benefits and pitfalls involved with auditing ISMS.
Overview
Now more than ever, information security is acknowledged as an important business structure which, if not managed efficiently can have a negative effect on an organisation’s growth and reputation.
This CQI IRCA certified course is designed to provide delegates with an understanding of the requirements to effectively audit an information security management system. The course teaches delegates the benefits and pitfalls involved with auditing an ISMS.
- Basic Registration Process
- The documentation requirements of ISO 27001:2013
- The mandatory procedures
- Where to get information and guidance
- The audit process using a risk treatment plan
- Documents required by the standard
What will you be covering?
- Process approach to auditing
- Audit planning
- Auditing against a standard
- Scripted audit
- Audit exercise
- Audit reporting
This course is especially suitable for anyone who is involved in the internal audit of an information security management system or for existing auditors who are looking to refresh their skills.
The Internal auditor course is aimed at those who have an understanding of ISO 27001:2013 or have attending the Foundation course.