ISO/IEC 27001 Information Security Management Systems (ISMS) sets the scope, structure and requirements for an effective ISMS, helping organisations of all sizes to manage information securely.

Having a certified and well-maintained ISMS demonstrates an adherence to good security practices and can improve a company’s reputability.

This ISMS ISO 27001 Internal Auditor Training Course will equip delegates with the necessary skills to perform internal audits, allowing them to contribute towards the improvement and maintenance of their organisation’s ISMS.

The course centres around a highly interactive central case study through which delegates will learn the key stages of an audit, including:

  • Planning: identifying the frequency of audits, defining the audit scope and creating audit checklists
  • Conduct: undertaking the opening meeting, gathering information and completing checklists
  • Report: writing up nonconformities
  • Follow-up: recommending corrective action and evaluating responses

  • An introduction into auditing an ISMS based on ISO 27001
  • The role of auditing for a certified ISO 27001 ISMS
  • The relationship between ISO 27001 and the rest of the ISO 27000 family
  • Annex A controls
  • Documentation
  • Risk assessment
  • Checklists
  • Continual improvement of the ISMS
  • Factors that determine audit frequency
  • Auditing process including
    • planning
    • audit process
    • audit review
  • Nonconformity report writing
  • Corrective action
  • Sources of information and further development

This ISO 27001 Internal Auditor Training Course is highly suitable for:

  • those looking to undertake internal ISMS audits
  • auditees wanting to understand the audit process
  • quality manager taking on ISMS responsibilities
  • IT managers or professionals with information security responsibilities

Click here to learn more about prior knowledge requirements.

Individuals without previous auditor and ISO 27001 experience may benefit from attending our Introduction to ISO 27001 Training Course. The introductory course takes place the day prior to this auditor course at the same venue. When both courses are booked together a discount of £100 will be applied.

On completion of this ISO 27001 Internal Auditor training course delegates will be able to:

  • plan and prepare for an internal audit with an understanding of auditing procedures and documentation.
  • conduct an effective ISMS audit against ISO 27001
  • present audit findings and potential corrective actions

The ISO 27001 Internal Auditor Training Course can be provided on a dedicated basis at your offices, a venue of your choice or online. The course includes interactive workshops which encourage team discussions on subjects such as ‘Checklists’, ‘Corrective Actions’ and ‘Internal Audits’. The team discussions act as a platform for later discussions on successfully undertaking internal audits within your organisation.

Request Quote

For Scheduled Training courses, please select from the Course Dates and Venues table below.