Information Security Management Systems (ISMS) Internal Auditor Training Course

A two-day course describing ISO 27001 and how it contributes to internal Information security management systems.

This course for prospective internal auditors covers the purpose, structure and content of ISO 27001.

This course is designed to provide attendees with the skills and knowledge to perform internal information security audits, within their organizations, against the ISO 27001 standard. It ensures the correct application of accepted audit protocols as per ISO 19011 and teaches the skills necessary to plan and execute internal audits as well as reporting.

Objective

Upon successful completion, attendees will have gained an understanding of:

  • Information security systems and the need for audits;
  • The roles and responsibilities of auditors;
  • An overview of the aim, structure and uses of ISO 27001;
  • How to establish an internal audit program;
  • How to plan, prepare, perform and report on internal audits in accordance with ISO 19011;
  • Gathering objective evidence through effective interviewing, observation & sampling;
  • Analyzing and interpreting information in order to determine conformance;
  • How to verify corrective actions and deal with difficult audit situations.

Audience

This course is suitable for the following:

  • Information technology managers;
  • Information security managers and administrators;
  • Quality officers;
  • Risk managers;
  • Information security consultants occupied with the task of participating in and/or leading audit teams during audits of the information security management systems.


All our public courses can also be delivered in-house at your premises either as standard or tailored depending on the needs and requirements of your business.

To find out which training courses we offer in your country, click on "Find a local course", select your country and navigate to Information security and service; or Contact us if you are interested or want to know more on in-house courses.

This course for prospective internal auditors covers the purpose, structure and content of ISO 27001.

This course is designed to provide attendees with the skills and knowledge to perform internal information security audits, within their organizations, against the ISO 27001 standard. It ensures the correct application of accepted audit protocols as per ISO 19011 and teaches the skills necessary to plan and execute internal audits as well as reporting.

Objective

Upon successful completion, attendees will have gained an understanding of:

  • Information security systems and the need for audits;
  • The roles and responsibilities of auditors;
  • An overview of the aim, structure and uses of ISO 27001;
  • How to establish an internal audit program;
  • How to plan, prepare, perform and report on internal audits in accordance with ISO 19011;
  • Gathering objective evidence through effective interviewing, observation & sampling;
  • Analyzing and interpreting information in order to determine conformance;
  • How to verify corrective actions and deal with difficult audit situations.

Audience

This course is suitable for the following:

  • Information technology managers;
  • Information security managers and administrators;
  • Quality officers;
  • Risk managers;
  • Information security consultants occupied with the task of participating in and/or leading audit teams during audits of the information security management systems.


All our public courses can also be delivered in-house at your premises either as standard or tailored depending on the needs and requirements of your business.

To find out which training courses we offer in your country, click on "Find a local course", select your country and navigate to Information security and service; or Contact us if you are interested or want to know more on in-house courses.

Management Systems Training

 

Training methodology and benefits

DNV’s training blends auditor expertise, data analysis and LMS (Learning Management System) accessibility.

 

APQP4Wind Training

APQP4Wind is the common frame of reference to be used in the industry to strengthen the cooperation between manufacturers and suppliers

 

Automotive and aerospace training

Ensuring quality and safety in every part of the supply chain is vital for the automotive and aerospace industries

 

Environment and energy training

Public concern on environment and energy issues, stricter environmental legislation and increased media attention put more demands on businesses today

 

Food safety training

The food and beverage industry is moving to satisfy demands from international consumers and to open new market opportunities

 

Health and safety training

Your company is expected to care for its employees by managing safety and health in a professional way

 

Healthcare training

Every patient and service user across the globe should get the best care possible

 

Information security and IT service management training

Information is a vital asset for any company, but which also harbours special obligations

 

Medical devices training

Production of medical devices is a strictly regulated business. In almost all countries, and for most medical products, there are requirements and standards to which manufacturers need to show compliance

 

Quality & performance training

An effective quality management system in place can improve your company’s quality processes and overall performance and success

 

Risk management and business continuity training

The purpose of risk management is not to eliminate risk, but to understand it so that you can take advantage of the upside and minimize the downside

 

Social responsibility training

Ensuring your commitment to safeguard human rights and operate in an ethical, responsible manner is essential to instill ethical practices and promote a culture of corporate sustainability