Auditing Information Security Management Systems I
This competency focuses on auditing information security controls of Annex A of ISO/IEC 27001. Participants learn to audit policies, governance, roles, and responsibilities, ensuring effective implementation.
5 Trainers
About
Course Overview:
This comprehensive course introduces participants to the practices and techniques for auditing Annex A controls under ISO/IEC 27001. It guides learners through auditing specific controls, evaluating governance frameworks, and understanding policy implementation across various organizational settings.
What You'll Learn:
Key auditing principles, including ethics and independence
Audit types, objectives, and evidence-based techniques
Structured procedures across all audit phases
ISO 19011 and ISO/IEC 17021-1 auditing frameworks
Reporting findings, identifying nonconformities, and closing audits
Who Should Take This Course?
This course is perfect for:
Auditors and lead auditors working with management systems
Compliance officers and quality managers
Professionals preparing for ISO-based audits
Internal auditors and consultants
Anyone seeking to improve their audit planning and execution skills
What You'll Get:
A certification of completion
Practical skills for management system audits
Understanding of ISO audit standards and frameworks
Confidence in conducting each phase of the audit process
Knowledge of evidence-based auditing and communication strategies
Module 1
Audit Fundamentals
Audit Types, Objectives, and Criteria (13 mins)
Audit Principles (14 mins)
Independence (14 mins)
Ethics (16 mins)
Practice Quiz
Module 2
Audit Procedures
Evidence-based Auditing (15 mins)
Audit Procedures (Part I) (16 mins)
Audit Procedures (Part II) (13 mins)
Audit Procedures (Part III) (14 mins)
Practice Quiz
Module 3
The Audit Process
Initiation of the Audit Process (15 mins)
Stage 1 Audit (14 mins)
Preparing for Stage 2 Audit (15 mins)
Stage 2 Audit (14 mins)
Practice Quiz
Module 4
Finalization of the Audit Process
Drafting Audit Findings and Nonconformities (15 mins)
Languages Available: Spanish, English, German, French
Exam
Certificate upon completion of the course
Tags
Auditing
Management Systems Auditing
Audit Fundamentals
Audit Procedures
ISO/IEC 17021-1
ISO 19011 Standard
About the Trainer
Bevan Lane
Cybersecurity and Information Security Specialist
Bevan Lane is a prominent figure in Information Security and IT Governance with over 25 years of global experience. Bevan is recognized for leading information security projects, assessments, and policy formulation, significantly advancing the field. Bevan has facilitated over 150 training sessions, workshops, and presentations at international forums, sharing critical insights with global professionals. His expertise includes incident response, investigations, and addressing complex IT security challenges for key clients. Renowned for his specialization in ISMS implementations, certification audits, and security consulting, Bevan is known for strategic thought leadership and creating client-specific solutions. His track record and commitment to excellence position him as a leading authority in evolving information security practices worldwide.