This course aims to provide guidance and practical experience in planning, executing, and reporting Information Security Management System audits. Information security is now recognized as an important business process which, if not managed correctly and efficiently, may impact upon an organization’s ability to deliver its products and services to their customers. Just as important, lack of security has the potential to impact revenues. The highly specialized skills and practical knowledge needed to assess an organization’s capability to manage all aspects of information security is one that can be learnt.
This innovative, two-day course provides a solid foundation in all aspects of the audit process. Stage by stage, delegates are taken through a structured programme that includes a balance of theory and practice. It uses a combination of collaborative learning and practical activities, enabling delegates to gain an understanding of the key activities for auditing.
Online training courses: Connected Learning Live
You can attend this training course classroom based and online. Do you prefer the convenience of an online training course? View here for the available dates or read more about Connected Learning Live.
ISO/IEC 27001:2022 learning path and combination discount
The ISO 27001:2022 learning path is modular. You can follow the training courses in all combinations. We would recommend the following order:
Besides this requirements training course, the following training courses also be part of the ISO 27001 learning path:
| Training course | |
| 1 | Requirements training course |
| 2 | Implementation training course |
| 3 | Internal auditor training course |
| 4 | Lead auditor training course |
Attending several training courses of a learning path is associated with special discounts.
| Combinations |
| Combination of training 1 + 2 |
| Combination of training 1 + 3 |
| Combination of training 1 + 4 |
| Combination of training 1 + 2 + 3 |
| Combination of training 1 + 2 + 3 + 4 |
In-house training course
If more employees need to understand, implement, audit, your management system, training can be delivered at your location. Based on your learning needs we could provide a customized in-house training course for your team.
For more information about the learning path or in-house training courses, please contact our Training Advisors via +31 (0)20 346 0780 or send an email to training.nl@bsigroup.com.
Who should attend?
- All personnel who are/will be coordinating internal audit activities within your organization
- Persons who have been given the responsibility to audit an Information Security Management System
- Existing auditors who wish to refresh their skills
Prerequisites:
The course is aimed at personnel who already have an understanding of ISO/IEC 27001(delegates who do not have this understanding are strongly recommended to attend our ISO 27001:2022 Requirements course; as the requirements of this standard are not taught on this internal auditor’s course).
Delegates will be able to:
By the end of the course you will have an understanding in the areas of:
- The principles of auditing to ISO/IEC 27001:2022
- Audit activities
- The role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011
You will have the skills to:
- Initiate the audit
- Prepare the audit activities
- Conduct audit activities
- Prepare and distribute the audit report
- Complete the audit
- Audit follow-up
- Audit an ISMS to establish conformity (or otherwise) with ISO 27001
Practical information
- It's a 2-day course
- The training and materials will be provided in English
- The standard ISO 27001:2022 and ISO 19011:2018 aren’t into the training price included. However, during the training course, a loan copy of the standards will be available
- Lunch and drinks are included
For further information regarding reduced rates at the hotel where the training is being conducted, please contact training.nl@bsigroup.com or call +31 (0)20 346 0780.
