The BSI Training Academy can teach you the essential knowledge and skills an internal auditor needs, along with the areas your Certification Body (CB) will be generally looking for to comply with generic internal auditing requirements in management system standards. This will include the meanings and intention of certification criteria and associated theories, methodologies, techniques or tools.
This course aims to provide guidance and practical experience in planning, executing, and reporting Information Security Management System audits.
Information security is now recognized as an important business process which, if not managed correctly and efficiently, may impact upon an organization’s ability to deliver its products and services to their customers. Just as important, lack of security has the potential to impact revenues. The highly specialized skills and practical knowledge needed to assess an organization’s capability to manage all aspects of information security is one that can be learnt.
This innovative, two-day course provides a solid foundation in all aspects of the audit process. Stage by stage, delegates are taken through a structured programme that includes a balance of theory and practice. It uses a combination of collaborative learning and practical activities, enabling delegates to gain an understanding of the key activities for auditing.
What are the benefits?
- Recognize areas your Certification Body (CB) will be generally looking for to comply with generic internal auditing requirements in management system standards. This will include the meanings and intention of certification criteria and associated theories, methodologies, techniques or tools
- Appropriately trained auditors will bring added value to the internal audit process
- Your business will remain compliant to the international Standard for Information Security Management Systems
- Skills development for your internal auditors; as well as the main core knowledge requirements
Who should attend?
The course is especially suitable for:
- Anyone who is or will be coordinating internal audit activities within your organization
- Those who have responsibility to audit an Information Security Management System
- Existing auditors who wish to refresh their skills
Prerequisites - you are expected to have the following prior knowledge:
The course is aimed at those who already have an understanding of ISO/IEC 27001:2022. If you do not have this understanding, you’re strongly recommended to attend the one-day requirements training course as the requirements of this standard are not taught on this internal auditor’s course
What will I learn?
By the end of the course you will have an understanding in the areas of:
- The principles of auditing to ISO/IEC 27001:2022
- Audit activities
- The role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011
You will have the skills to:
- Initiate the audit
- Prepare the audit activities
- Conduct audit activities
- Prepare and distribute the audit report
- Complete the audit
- Audit follow-up
- Audit an ISMS to establish conformity (or otherwise) with ISO 27001
What will I gain?
We want to make sure you have the best learning experience possible. That’s why we offer a range of training courses from beginner to expert. We create a positive learning environment,so you retain the knowledge and acquire the skills that will continue to be of use beyond the course. When you attend a BSI training course, our tutors are the best in the business. They’re truly passionate about sharing their knowledge and ensuring you learn. Trusted experts with years of hands-on and business experience, they bring the subject matter to life with relevant and contemporary examples to enhance your learning.
Training delivered at your sitecould be a convenient and cost-effectiveoption, especially if you have multiple delegates. Talk to one of our experts to find out more.
