Internal audit on Information Security MS - ISO 27001 (ISMS)

Steps on implementing a successful Information Security Management System (ISMS) audit programme

Ratings: 4.08 / 5.00




Description

The ISO 27001:2013 standard specifies requirements for managing an organisation’s information security system structure. In essence, the standard provides a model framework for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system.

The adoption of digital technology has become more prevalent in recent years. Organisations must ensure that they have a robust information security management system to safeguard the interest of all stakeholders involved.

We hope to impart our knowledge/guide on how an organisation can achieve a robust information security management system through this course. We will also provide a step-by-step guide on how individuals can conduct a proper internal audit.

With this need for implementation comes a need for understanding of the requirements.


From this course, we will walk you through:

  • General concepts and principles of auditing

  • Establishing and preparing for the audit

  • Performing the audit (Included: How to conduct a mock audit based on a compiled checklist?)

  • Reporting the audit results

  • Post-audit activities and CAPA planning

This course aims to educate individuals on conducting an internal audit for ISO 27001:2013. They can perform their mock audit before the actual ISO audit with this knowledge.


Your journey to successfully conducting an internal audit based on requirements of ISO 27001:2013 Information Security Management System (ISMS) is only clicks away. We welcome onboard the Stendard Academy, we put quality at the centre of your business and make it easier!

What You Will Learn!

  • The importance of implementing an Information Security Management System per the ISO 27001:2013 standard
  • Requirements of the ISO 27001:2013 standard
  • How to conduct an ISO 27001:2013 internal audit?
  • How to report the audit results?
  • The various follow-up post-audit activities and CAPA planning

Who Should Attend!

  • Organisations who are looking to set up their ISMS and get ISO 27001:2013 certified
  • Professionals tasked with overseeing a management system meeting ISO 27001:2013 standard
  • Risk managers
  • Quality managers
  • Any individuals looking to learn more about the ISO 27001:2013 standard