(Copy /paste this coupon code in the cart at the time of checkout)
ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.
The purpose of this two-day Internal Auditor Training course is to give delegates the necessary skills to perform internal audits on an organization’s Information Security Management Systems (ISMS) and to contribute to its continual improvement. The training helps participants identify and control threats an organization faces from any information security controls lapses and how to effectively put in place measures to address those risks.
This course will also explain the role and responsibilities that the auditor must consistently demonstrate, including the need to display fairness, integrity, confidentiality and a focus on evidence-based decision making.
At the end of this course, participants will be able to:
This course covers the following topics:
● Introduction to information security management systems
● Key Principles and Concepts of the ISMS
● Certification to ISO/IEC 27001:2013
● The ISO 27000 series of standards
● The ISMS Audit Planning
● The ISMS Audit Preparation
● Conducting an ISMS Audit
● Audit reporting and non-conformances
● Root Cause Identification
● Conducting Audit Follow-Up
AQTS reserves the right to cancel or re-schedule the course and to change the course instructors. In the event of course cancellation, AQTS will not be responsible for airfare penalties or other travel related expenses that you may incur.
If you cannot find a substitute, we can transfer your course fees to the same course in next offering.
A Certificate will be issued to attendees who participate in the entire course.
A prior review of the ISO 27001:2013 and knowledge of information security practices and an understanding of auditing principles is suggested for this course.