Now more than ever, information security is acknowledged as an important business structure which, if not managed efficiently can have a negative effect on an organisation’s growth and reputation.
This course is designed to provide delegates with an understanding of the requirements to effectively audit an information security management system. The course teaches delegates the benefits and pitfalls involved with auditing an ISMS.
- Basic Registration Process
- The documentation requirements of ISO 27001:2013
- The mandatory procedures
- Where to get information and guidance
- The audit process using a risk treatment plan
Documents required by the standard
What will you be covering?
- Process approach to auditing
- Audit planning
- Auditing against a standard
- Scripted audit
- Audit exercise
- Audit reporting
This course is especially suitable for anyone who is involved in the internal audit of an information security management system or for existing auditors who are looking to refresh their skills.
The Internal auditor course is aimed at those who have an understanding of ISO 27001:2013 or have attending the Foundation course.
Oil Spill Response