|
INFORMATION SECURITY isMS Internal auditor COURSECourse Reference ISM0306 |
 |
|
INFORMATION SECURITY isMS Internal auditor COURSECourse Reference ISM0306 |
|
OBJECTIVES
To give basic understanding of:
- The ISO 27001 standard and its documentation requirements
- Risk assessment
- The relationship between ISO/IEC 17799:2000 & ISO 27001:2005
- The control objectives in ‘Annex A'.
- A Statement of Applicability and a Risk Treatment Plan
- The audit process utilising a Risk Treatment Plan
COURSE CONTENT
A one day course containing the following:
- Process approach to auditing
- Audit planning
- Auditing against a standard
- Scripted audit
- Audit exercise
- Audit reporting
WHO SHOULD ATTEND
This course is designed for auditors, prospective auditors and managers of Information Security Management Systems.
WHAT SHOULD HAVE BEEN LEARNT
- How to plan internal audits of an ISMS
- How to carry out internal audits of an ISMS
- How to produce a reports of internal audits of an ISMS
- Additional tools required by an internal auditor of an ISMS.
PREREQUISITIES
Delegates are assumed to have sound knowledge of the topics covered in the one day ISMS Awareness and Application Course.
COURSE DURATION AND STRUCTURE
This course is one day and is a mix of formal lectures and practical exercises.
For course dates and times, click here
To book a course click here, or contact ISOQAR
