This course enables you to develop the necessary
expertise to audit an Information Security Management System (ISMS), and
manage a team of auditors to apply audit principles, procedures and techniques.
During this course, you will get the necessary knowledge and skills needed to plan
and perform internal and external audits in compliance with certification
process of the ISO/IEC 27001 standard.
Audience:
à Information Security Management system (ISMS) internal auditors
à Auditors wanting to perform and lead Information Security Management system (ISMS) certification audits
à Project managers or consultants responsible for implementation the ISMS audit process
à Persons responsible for the Information Security service in an organization
à Members wanting to prepare for an ISMS audit function
à
Understand the principles and operations of Information
Security Management System
à
Understand the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory
frameworks
à
Understand an auditor’s role to: plan, lead and follow-up
on a management system audit in accordance with ISO 19011
à
Understand the requirements of ISO/IEC 27001 in
the context of an ISMS audit
à
Learn how to lead an audit and audit team
à
Understand the competencies of an auditor to: plan an
audit, lead an audit, draft reports, and follow-up on an audit in compliance
with ISO 19011
à
Fundamental principles of Information Security
à
Information Security :Normative, regulatory and legal
framework
à
The ISO 27001 certification process
à
the clauses of ISO 27001
à
Fundamental audit concepts and principles
à
Audit the approach based on evidence and on risk
à
Preparation of an ISO 27001 certification audit
à
Documenting of an ISMS audit
à
Communication during the audit
à
Audit procedures: observation, document review,
interview, sampling techniques, technical verification, corroboration and
evaluation
à
Drafting test plans
à
Formulation of audit findings, drafting of nonconformity
reports
à
Audit documentation
à
Conducting a closing meeting and conclusion of an ISO 27001 audit
à
Evaluation of corrective action plans
à
ISO 27001 surveillance audit and audit management
program
If you want to contact us please fill in the contact form. Thank you that you stay in touch.