ISO 27001:2013 Internal Auditor Course | Information Security Management System

Course details

ISO 27001 Internal Auditor Course Online training aims to provide students with the knowledge and skills required to perform an internal audit of part of an information security management system based on ISO/IEC 27001 and report on the effective implementation and maintenance of ISMS in accordance with ISO 19011.

However, this course does not address ISO/IEC 27001 in detail, and does not aim to equip students with the knowledge and skills to determine conformity, or otherwise, with ISO/IEC 27001. Students requiring the knowledge and skills to conduct entire information security management system audits against ISO 27001 may please attend the ISMS Auditor/Lead Auditor training course.

Who can attend this course?

ISO 27001 Internal Auditor Course Online training is for anyone who is involved in conducting or learning how to conduct internal audits of ISMS based on ISO 27001:2013. For example:

• Information security officers / managers 
  
• IT and corporate security officers / managers 
  
• Risk and compliance managers 
  
• Information security consultants etc. 
  

What are the benefits of attending this course?

You will:

• be better equipped to plan, conduct and follow-up on ISO 27001:2013 audits 
  
• develop skills to assess an organizations ability to manage and improve its ISMS 
  
• have the ability to proactively contribute to the effectiveness of your organization's ISMS 
  
• improve the protection of your organization's confidential information 
  
• help your organization meet their interested parties and corporate governance needs & expectations. 
  

What is covered?

• Principles of auditing ISMS 
  
• What's an audit 
  
• Initiating, planning, preparing, conducting, reporting and following-up ISMS audits. 

What prior knowledge should I have?

It is highly recommended that you have prior knowledge of the following concepts:

• The Plan-Do-Check-Act (PDCA) Cycle 
  
• Basic knowledge of the requirements of ISO/IEC 27001:2013 standards 
  
• An understanding of the requirements of ISO/IEC 27001(with ISO/IEC 27002) 
  
• Commonly used terms and definitions as described in ISO/IEC 27000 
  

Certification

ISO 27001 Internal Auditor Course Online training can be completed within thirty days from the date of registration. All successful candidates will be awarded the ISMS (ISO 27001:2013) Internal Auditor certificate by Integrated Assessment Services.

Criteria for successful completion

The evaluation of this course will be based on the scores achieved in the final exam. 

• Score a minimum of 60% in the final exam. 
  

Quizzes and Final exam

Quizzes at the end of each module will have objective questions for which a right option has to be selected.

The final exam will have 3 sections:

• Section A: will contain 10 objective questions carrying one mark each. 
• Section B: will have 4 short answer questions, each carrying five marks. 
• Section C: Two audit scenario case studies carrying ten marks each. 
  

Course Content

• Module 1  Introduction 
  
• Module 2  ISMS terminology 
  
• Module 3  Structure of ISO/IEC 27001:2013 
  
• Module 4  Reference control objectives and controls 
  
• Module 5  Introduction to ISMS Audits 
  
• Module 6  Planning the ISMS audit 
  
• Module 7  Conducting the ISMS audit 
  
• Module 8  Reporting & following up an ISMS audit