The BSI Training Academy can teach you the essential knowledge and skills an internal auditor needs, along with the areas your Certification Body (CB) will be generally looking for to comply with generic internal auditing requirements in management system standards. This will include the meanings and intention of certification criteria and associated theories, methodologies, techniques or tools.
This course aims to provide guidance and practical experience in planning, executing, and reporting Information Security Management System audits.
Information security is now recognized as an important business process which, if not managed correctly and efficiently, may impact upon an organization’s ability to deliver its products and services to their customers. Just as important, lack of security has the potential to impact revenues. The highly specialized skills and practical knowledge needed to assess an organization’s capability to manage all aspects of information security is one that can be learnt.
This innovative, two-day course provides a solid foundation in all aspects of the audit process. Stage by stage, delegates are taken through a structured programme that includes a balance of theory and practice. It uses a combination of collaborative learning and practical activities, enabling delegates to gain an understanding of the key activities for auditing.
Please note: The training is in English.
How will I benefit?
- Recognize areas your Certification Body (CB) will be generally looking for to comply with generic internal auditing requirements in management system standards. This will include the meanings and intention of certification criteria and associated theories, methodologies, techniques or tools
- Appropriately trained auditors will bring added value to the internal audit process
- Your business will remain compliant to the international Standard for Information Security Management Systems
- Skills development for your internal auditors; as well as the main core knowledge requirements
Who should attend?
The course is especially suitable for:
- Anyone who is or will be coordinating internal audit activities within your organization
- Those who have responsibility to audit an Information Security Management System
- Existing auditors who wish to refresh their skills
What will I learn?
By the end of the course you will have an understanding in the areas of:
- The principles of auditing to ISO/IEC 27001:2022
- Audit activities
- The role of an auditor to plan, conduct, report and follow up an ISMS audit in accordance with ISO 19011
You will have the skills to:
- Initiate the audit
- Prepare the audit activities
- Conduct audit activities
- Prepare and distribute the audit report
- Complete the audit
- Audit follow-up
- Audit an ISMS to establish conformity (or otherwise) with ISO 27001
What is included?
- Access to the platform where classes will be held
- Access to the platform where the materials are posted
- On successful completion of the training, participants will receive an internationally recognized certificate
