Competency

Auditing Information Security Management Systems I

This competency focuses on auditing information security controls of Annex A of ISO/IEC 27001. Participants learn to audit policies, governance, roles, and responsibilities, ensuring effective implementation.

5 Trainers

About

Course Overview:

This comprehensive course introduces participants to the practices and techniques for auditing Annex A controls under ISO/IEC 27001. It guides learners through auditing specific controls, evaluating governance frameworks, and understanding policy implementation across various organizational settings.

What You'll Learn:

  •  Key auditing principles, including ethics and independence
  • Audit types, objectives, and evidence-based techniques
  • Structured procedures across all audit phases
  •  ISO 19011 and ISO/IEC 17021-1 auditing frameworks
  •  Reporting findings, identifying nonconformities, and closing audits

Who Should Take This Course?

This course is perfect for:

  •  Auditors and lead auditors working with management systems
  •  Compliance officers and quality managers
  • Professionals preparing for ISO-based audits
  •  Internal auditors and consultants
  •  Anyone seeking to improve their audit planning and execution skills

What You'll Get:

  •  A certification of completion
  • Practical skills for management system audits
  • Understanding of ISO audit standards and frameworks
  •  Confidence in conducting each phase of the audit process
  •  Knowledge of evidence-based auditing and communication strategies

Module 1

Audit Fundamentals

  •  Audit Types, Objectives, and Criteria (13 mins)
  •  Audit Principles (14 mins)
  •  Independence (14 mins)
  •  Ethics (16 mins)
  •  Practice Quiz

Module 2

Audit Procedures

  •  Evidence-based Auditing (15 mins)
  •  Audit Procedures (Part I) (16 mins)
  •  Audit Procedures (Part II) (13 mins)
  • Audit Procedures (Part III) (14 mins)
  •  Practice Quiz

Module 3

The Audit Process

  • Initiation of the Audit Process (15 mins)
  •  Stage 1 Audit  (14 mins)
  •  Preparing for Stage 2 Audit (15 mins)
  • Stage 2 Audit  (14 mins)
  •  Practice Quiz

Module 4

Finalization of the Audit Process

  • Drafting Audit Findings and Nonconformities (15 mins)
  •  Closing the Audit (15 mins)
  •  Beyond the Initial Audit (15 mins)
  •  Communication during the Audit (15 mins)
  •  Practice Quiz

Specialization · 4 modules             

4 Modules

100% Positive Reviews (24 reviews)

104 Lessons (4h 15m)

3,011 Students

Languages Available: Spanish, English, German, French

Exam

Certificate upon completion of the course

Tags

Auditing

Management Systems Auditing

Audit Fundamentals

Audit Procedures

ISO/IEC 17021-1

ISO 19011 Standard

About the Trainer

Bevan Lane

Cybersecurity and Information Security Specialist

Bevan Lane is a prominent figure in Information Security and IT Governance with over 25 years of global experience. Bevan is recognized for leading information security projects, assessments, and policy formulation, significantly advancing the field. Bevan has facilitated over 150 training sessions, workshops, and presentations at international forums, sharing critical insights with global professionals. His expertise includes incident response, investigations, and addressing complex IT security challenges for key clients. Renowned for his specialization in ISMS implementations, certification audits, and security consulting, Bevan is known for strategic thought leadership and creating client-specific solutions. His track record and commitment to excellence position him as a leading authority in evolving information security practices worldwide.

Get Industry Insights and Special Offers

Skills Subscribes

© PECB Skills 2025. All rights reserved.

Book a Meeting

Skills - Book a demo

登録ありがとうございます!

Thank you for subscribing!