Now more than ever, information security is acknowledged as an important business structure which, if not managed efficiently can have a negative effect on an organisation’s growth and reputation.
This CQI IRCA certified course is designed to provide delegates with an understanding of the requirements to effectively audit an information security management system. The course teaches delegates the benefits and pitfalls involved with auditing an ISMS.
- Basic Registration Process
- The documentation requirements of ISO 27001:2013
- The mandatory procedures
- Where to get information and guidance
- The audit process using a risk treatment plan
Documents required by the standard
What will you be covering?
- Process approach to auditing
- Audit planning
- Auditing against a standard
- Scripted audit
- Audit exercise
- Audit reporting
This course is especially suitable for anyone who is involved in the internal audit of an information security management system or for existing auditors who are looking to refresh their skills.
Prerequisites
The Internal auditor course is aimed at those who have an understanding of ISO 27001:2013 or have attending the Foundation course.
Extremely well run and professional course
Cam Pullham
-
Oil Spill Response
Trained was excellent. delivered a course that very easily could be dull and boring. there was a lot of excellent interaction within the group that made the training very interesting whilst we learne
Lee Davies
-
Balfour Beatty