Make sure you are GDPR compliant. ISO 27001 helps organisations keep information assets secure. Using this standard will help your organisation to manage the security of assets such as financial information, intellectual property, employee details or information entrusted to you by third parties such as customers. SQT Training‘s two-day ISO 27001:2017 Internal Auditor course provides delegates with the skills necessary to be effective in this field. Register now for dates in September and November.
ISO 27001:2017 Internal Auditor
ISO 27001 is the best-known standard providing requirements for an information security management system (ISMS). Regulation (EU) 2016/679 General Data Protection Regulation or GDPR entered into force in May 2018 and places direct data processing obligations on organisations at an EU-wide level. ISO 27001 is an excellent framework for compliance with EU GDPR. Thousands of internal audits are performed each year providing little internal business benefit. This course focuses on auditing ISO 27001 for real improvement and performance rather than just conformance.
What You Will Learn
- An introduction to the ISO 27001 standard Annex SL and Annex A high level structure
- Exploring terms and definitions as outlined in the standard
- Understanding the clauses and requirements including the organisational context, leadership, planning, support, and operation
- Understanding the statement of applicability
- Understanding risk awareness, assessment, and treatment
- Understand training, awareness, and continuous improvement
- The audit process
- Competencies and responsibilities of internal auditors
- Audit preparation – pre-audit activities
- Audit checklists
- Conducting the audit – gathering evidence
- Interview techniques/questioning skills
- Reporting the audit and follow-up
- Corrective action
- Public courses include a practical case study pertaining to the carrying out of an ISMS internal audit and in-house courses include a practical ISMS internal audit.
About This Course
This course is certified by CQI IRCA (Course ID Number: 2140). The International Register of Certificated Auditors (CQI IRCA) is the world’s original and largest international certification body for auditors of management systems.