ISO 27001: 2013 Information Security Management System - Internal Auditor

Course Overview

This two-day course will help anyone responsible for managing an Information Security Management System (ISMS) to remain consistently compliant against the requirements of ISO27001: 2013. With a hands-on approach to auditing, this course teaches the skills needed to continually improve your ISMS. Also available as a live broadcast.

Benefits

This course will help those with little auditing experience to:

• Develop and plan information security management systems internal audits.
• Build confidence when being audited by third party assessors.
• Be able identify and close out non-conformities / corrective actions  

Course Content

• Overview of ISO 27001: 2013 ISMS
• Planning infosec audits and agree scope
• Performing ISMS audits 
• Human aspects of auditing
• Reporting findings and non-conformity
• Risk assesssment and risk treatment 
• Statement of Applicability and security controls

Aimed at

• Business owners
• Risk Managers
• IT Managers
• Personnel with an interest in and responsibility for information security management / Data management