Competency
Auditing Information Security Management Systems I
This competency focuses on auditing information security controls of Annex A of ISO/IEC 27001. Participants learn to audit policies, governance, roles, and responsibilities, ensuring effective implementation.
5 Trainers
About
Course Overview:
This comprehensive course introduces participants to the practices and techniques for auditing Annex A controls under ISO/IEC 27001. It guides learners through auditing specific controls, evaluating governance frameworks, and understanding policy implementation across various organizational settings.
What You'll Learn:
- Key auditing principles, including ethics and independence
- Audit types, objectives, and evidence-based techniques
- Structured procedures across all audit phases
- ISO 19011 and ISO/IEC 17021-1 auditing frameworks
- Reporting findings, identifying nonconformities, and closing audits
Who Should Take This Course?
This course is perfect for:
- Auditors and lead auditors working with management systems
- Compliance officers and quality managers
- Professionals preparing for ISO-based audits
- Internal auditors and consultants
- Anyone seeking to improve their audit planning and execution skills
What You'll Get:
- A certification of completion
- Practical skills for management system audits
- Understanding of ISO audit standards and frameworks
- Confidence in conducting each phase of the audit process
- Knowledge of evidence-based auditing and communication strategies
Module 1
Audit Fundamentals
- Audit Types, Objectives, and Criteria (13 mins)
- Audit Principles (14 mins)
- Independence (14 mins)
- Ethics (16 mins)
- Practice Quiz
Module 2
Audit Procedures
- Evidence-based Auditing (15 mins)
- Audit Procedures (Part I) (16 mins)
- Audit Procedures (Part II) (13 mins)
- Audit Procedures (Part III) (14 mins)
- Practice Quiz
Module 3
The Audit Process
- Initiation of the Audit Process (15 mins)
- Stage 1 Audit (14 mins)
- Preparing for Stage 2 Audit (15 mins)
- Stage 2 Audit (14 mins)
- Practice Quiz
Module 4
Finalization of the Audit Process
- Drafting Audit Findings and Nonconformities (15 mins)
- Closing the Audit (15 mins)
- Beyond the Initial Audit (15 mins)
- Communication during the Audit (15 mins)
- Practice Quiz
Specialization · 4 modules
4 Modules
100% Positive Reviews (24 reviews)
104 Lessons (4h 15m)
3,011 Students
Languages Available: Spanish, English, German, French
Exam
Certificate upon completion of the course
Tags
Auditing
Management Systems Auditing
Audit Fundamentals
Audit Procedures
ISO/IEC 17021-1
ISO 19011 Standard
About the Trainer
Bevan Lane
Cybersecurity and Information Security Specialist
Bevan Lane is a prominent figure in Information Security and IT Governance with over 25 years of global experience. Bevan is recognized for leading information security projects, assessments, and policy formulation, significantly advancing the field. Bevan has facilitated over 150 training sessions, workshops, and presentations at international forums, sharing critical insights with global professionals. His expertise includes incident response, investigations, and addressing complex IT security challenges for key clients. Renowned for his specialization in ISMS implementations, certification audits, and security consulting, Bevan is known for strategic thought leadership and creating client-specific solutions. His track record and commitment to excellence position him as a leading authority in evolving information security practices worldwide.
