Learn the way to drive continual development within your organisation’s facts management system (ISMS) and discover a way to identify possibilities for improvement and take corrective action to hold conformity to the ISO 27001 widespread with this certified two-day route. By attending and passing the route exam, you may gain the ISO 17024-Certificated ISO 27001 Certified ISMS Internal Auditor qualification.
By the end of this course you will be able to:
An overview of the structure and requirements of ISO 27001.
The relationship between ISO 27001, ISO 19011 and ISO 27007.
The mandatory documents for an ISO 27001-compliant ISMS.
How an internal audit contributes to the effectiveness of an ISMS?
Internal audit concepts, terms and definitions.
The principles of auditing conformance to ISO 27001.
The roles, responsibilities and desired attributes of the internal auditor.
The resources required for an internal audit.
How to plan, develop and manage an effective audit programme?
The different approaches to conducting an internal audit.
How to plan individual internal audits?
How to identify and report evidence-based nonconformists?
How to conduct an internal audit and handle the interview process?
How to take corrective action and conduct an internal audit follow-up?
The seven principles of a quality management system.
Who should attend?
Depending on your organisation’s size, this may include a number of staff members, representing a range of departments such as HR, finance or operations.
1. IT Manager
2. Compliance Manager
3. Information Assurance Officer
4. Information Security Manager
5. Internal Auditor
6. Operational Risk Manager
Basic knowledge of information security management principles and concepts
Benefits to Organization:
Successful auditing will improve the protection of your organization’s private information to fulfill your market assurance and corporate governance needs.
Your employer will have an internal useful resource and process so as to conduct its very own audit of its ISMS to assess and improve conformance with ISO/IEC 27001:2013.