Register now Contact us
About the course
The Information Security Management Systems, or ISMS, standard specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.
This two-day course begins with the understanding of the concept of Information Security Management, the requirements of ISO/IEC 27001:2013 certification standard, and its relation to the ISO 27000 series of standards for information security management. This Internal Auditor course is based on the principles of ISO 19011:2011. It is designed for those people who wish to understand and conduct internal audit assessments to the ISO/IEC 27001:2013 certification standard and its relation to the ISO 27000 series of standards for information security management.
What will you learn from the course?
At the end of this course, participants will be able to:
- To gain an understanding of the ISO/IEC 27001:2013 requirements
- Prepare, conduct and follow-up on ISO/IEC 27001:2013 audit activities
- Gain the skills to assess an organization’s capability to manage its ISMS
- Write factual audit reports
Note: The purpose of the course ensures a comprehensive transfer of knowledge and understanding on internal audit process with respect to ISO/IEC 27001:2013 requirements.
- Introduction to information security management systems
- Objectives and benefits of an ISMS
- Key Principles and Concepts of the ISMS
- Code of practice ISO/IEC 27002:2013
- Certification specification ISO/IEC 27001:2013
- Certification to ISO/IEC 27001:2013
- The ISO 27000 series of standards
- Essentials of the Standard
- The ISMS Audit Planning
- The ISMS Audit Preparation
- Conducting an ISMS Audit
- Recording the results
- Root Cause Identification
- Presenting reports
- Conducting Audit follow-Up
What is the course methodology?
Participants will learn through lectures, case studies, group exercises and discussions.
Who should take the course?
This course is suitable for any managers or executives responsible for the security and confidentiality of their business-critical information. This course is designed for those people who wish to understand and conduct internal audit assessments to the ISO 27001:2005 certification standard and its relation to the emerging ISO 27000 series of standards for information security management.
Who is the course advisor?
The course content and structure are designed by the domain experts from TÜV SÜD.
With immense experience and knowledge in the relevant standards, our team of product specialists and technical experts at TÜV SÜD, developed the course content based on current business landscape and market requirements.
What are the benefits of enrolling in this course?
- World-Class Training
Learn from TÜV SÜD’s industry expert and training specialist
- Interactive Learning Style
Interactive formats such as lectures, illustrations and simulations are used
- Networking Opportunity
Meet and build network with like-minded individuals at our instructor-led training
- Gain A Competitive Edge
Gain knowledge and develop relevant skills to stay relevant
Contact us for enquiries
To contact someone from TÜV SÜD, you may email us at firstname.lastname@example.org or call +65 6885 1667.
To know more about TÜV SÜD, please click here.
If you need more details on the course, please fill in the form below and we will contact you: