Competency
Auditing Information Security Management Systems V
This competency covers auditing ISO/IEC 27001 Annex A controls with a focus on operational security measures. Participants will learn to evaluate communication security and assess system acquisition, development, and maintenance to ensure strong organizational security practices.
5 Trainers
About
Course Overview:
This competency addresses advanced operational security audits under ISO/IEC 27001, covering controls on secure communication, record protection, and system development. The course guides auditors through evaluating technical processes and organizational practices essential for maintaining a resilient information security management system.
What You'll Learn:
- How to audit ISO/IEC 27001 Annex A controls 5.33 to 7.7
- Best practices for evaluating communication and system development controls
- Strategies for assessing operational record protection
- Efficient audit planning for technical and procedural controls
- Real-world examples of control implementation and assessment
Who Should Take This Course?
This course is perfect for:
- Information Security Auditors and Consultants
- Cybersecurity Professionals evaluating operations and development practices
- IT Managers overseeing security control
- Compliance and Risk Management Professionals
- Anyone involved in ISO/IEC 27001 implementation or auditing
What You'll Get:
- A certification of completion
- Detailed auditing knowledge for operational ISO/IEC 27001 controls
- Real-world applications and scenario-based learning
- Instruction by an international cybersecurity expert
- Access to a multi-module, structured learning path
Module 1
Auditing ISO/IEC 27001, Annex A Controls 5.33 to 5.36
- Auditing Control 5.33 – 13 mins
- Auditing Control 5.34 – 14 mins
- Auditing Control 5.35 – 13 mins
- Auditing Control 5.36 – 15 mins
- Practice Quiz
Module 2
Auditing ISO/IEC 27001, Annex A Controls 5.37, 6.1 to 6.3 and 6.6
- Auditing Control 5.37 – 14 mins
- Auditing Control 6.1 – 15 mins
- Auditing Controls 6.2 and 6.6 – 15 mins
- Auditing Control 6.3 – 14 mins
- Practice Quiz
Module 3
Auditing ISO/IEC 27001, Annex A Controls 6.4, 6.5, and 6.7 to 7.2
- Auditing Controls 6.4 and 6.5 – 15 mins
- Auditing Control 6.7 – 13 mins
- Auditing Control 6.8 – 13 mins
- Auditing Controls 7.1 and 7.2 – 17 mins
- Practice Quiz
Module 4
Auditing ISO/IEC 27001, Annex A Controls 7.3 to 7.7
- Auditing Controls 7.3 and 7.4 – 15 mins
- Auditing Control 7.5 – 14 mins
- Auditing Control 7.6 – 13 mins
- Auditing Control 7.7 – 14 mins
- Practice Quiz
Specialization · 4 modules
4 Modules
100% Positive Reviews (24 reviews)
104 Lessons (4h 15m)
3,011 Students
Languages Available: Spanish, English, German, French
Exam
Certificate upon completion of the course
Tags
ISO/IEC 27001 Annex A
Information Security Controls
Information Security
ISO/IEC 27001
Management Systems Auditing
About the Trainer
Eliza Popa
Security Advisor, Managing Director, and Auditor
Eliza Popa is a distinguished member of ISC2, ISACA, PECB, and CSA. As Founder and Managing Director of Cyberstrat IT Consulting in Abu Dhabi, she brings outstanding leadership to the field of cybersecurity. A certified trainer for CISSP, ISO/IEC 27001, and CCSK, Eliza has delivered training globally and led consulting projects across continents. Her expertise spans risk assessments, internal audits, and establishing GRC practices in multinational environments. Eliza is recognized for her dynamic, results-driven approach to information security and compliance.
