Information security is now recognized as an important business process that, if not managed correctly and efficiently, may impact an organization’s ability to deliver its products and services to its customers. Just as important, a lack of security has the potential to impact revenues. The highly specialized skills and practical knowledge needed to assess an organization’s capability to manage all aspects of information security is one that can be learned.
This innovative, one-day course provides a solid foundation in all aspects of the audit process. Stage by stage, delegates are taken through a structured program that includes a balance of theory and practice. It uses a combination of collaborative learning and practical activities, enabling delegates to gain an understanding of the key activities for auditing.
Prerequisites
The course is aimed at those who already have an understanding of ISO/IEC 27001:2022 and auditing. If you do not have this understanding, you’re strongly recommended to attend the one-day requirements training course as the requirements of this standard are not taught on this course
Pedagogical objectives
- Recognize TISAX requirements and the intention of TISAX label accreditation criteria
- Bring added value to your TISAX internal audit process
- Ensure your organization remains compliant with TISAX requirements
Skills to be acquired
Upon completion of this training, you will be able to:
- Comprehend the rationale for TISAX registration
- Explain pre-audit activities in the TISAX process
- Demonstrate how to use maturity and assessment levels
- Explain the requirements for ENX registration
- Identify the differences between TISAX requirements and ISO 27001
- Conduct TISAX audit activities
- Identify post-audit activities
You will have the skills to:
- Initiate the audit
- Prepare the audit activities
- Conduct audit activities
- Audit follow-up
- Audit an ISMS to establish conformity (or otherwise) with VDA ISA V5.1
Targeted audience
- Anyone who is or will be coordinating internal audit activities within your organization
- Those who have responsibility to audit an Information Security Management System
- Existing auditors who wish to refresh their skills
Pedagogical, technical and framing means
Course materials including:
- Introduction to the training, detailed program and security assignments
- Course presentation, theory and activities/ role plays
- Answers to the activities
- Videos
- Additional documents, distributed during the sessions, to use for the activities
- Attendance sheet to be signed
Assessment specifics
- Questionnaire to assess the knowledge at the end of the training
- Customer survey
What is included ?
- Course materials, provided electronically
- Letter of attestation
- Official certificate
Do you need more information?
If you have any concerns, please do not hesitate to contact our service department on the following numbers:
Telephone: 01 89 79 00 40
Email: training.france@bsigroup.com Or via the webchat service on our website: bsigroup.com
You will be put in touch with our team if necessary.
