Internal Audit of information security management system according to ISO/IEC 27001:2013

Target audience: information security managers, managers and specialists of information security departments, managers and specialists of IT departments, managers and specialists of internal audit departments, connected with information security management system (ISMS).

Course content:

• Overview of ISO/IEC 27001:2013 requirements;
• Types of ISMS audits;
• The main sections of the standard ISO/IEC 27001:2013;
• Interpretation of ISO/IEC 27001:2013 requirements in terms of internal audit;
• The main steps of internal audits (the program and audit plans, conducting audits, reports, actions after the audit);
• The main methods of internal audits;
• Practical cases and situations.

Our training course is based on the recommendations of ISO 19011:2018. Standard describes the approaches to the management of audit programs, audit stages in order to achieve the planned results.

To obtain a detailed training program and the lecturer summary please contact us at: info@tms-cs.ru