Courses Details
Course Overview
If you are new to auditing and already have a thorough understanding of ISO/IEC 27001 then this training is for you. This packed two-day course will enable you to carry out an ISO/IEC 27001 internal auditor and give you the vital skills to produce and distribute audit reports.This course teaches you on how to perform effective ISO/IEC 27001 audits to help your organization to continually improve.
Course Schedule
Target Audience
This course is for you if:
• If you need to carry out ISO/IEC 27001 internal audits
• Your knowledge of the internal audit process needs a refresh
Course Prerequisites
The course is aimed at personnel who already have an understanding of ISO/IEC 27001:2013 (delegates who do not have this understanding are strongly recommended to attend the one-day requirements training course
Expected Accomplishments

Upon completion of this training, delegates will be able to explain and apply:

  • The principles of auditing and the principles of auditing to ISO/IEC 27001:2013
  • Audit activities
  • Initiating the audit
  • Preparing audit activities
  • Conducting audit activities
  • Preparing and distributing the audit report
  • Completing the audit
  • Audit follow-up
Course Outline
Day 1
Background to Information Security Management Systems(ISMS)
ISO/IEC 27001: structure,auditing areas, terms and definitions
Management system and ISMS auditing
Auditor competence,responsibilities and characteristics
Audit evidence triangle
Types of audit
Audit activities
Creating an audit plan
Audit question techniques:communication and interpersonal skills
Conducting the opening meeting
Conducting an audit
Our course agenda

Day 2
Work documents
Non conformities
Documenting non conformities
Creating the audit report:prepare, approve and distribute
Conducting audit follow-up activities
Course review and questions
Reflection and feedback Level