Certified Information Security Auditor

Certified Information Security Auditor Training.

Description

 

Delivered in either Live Online or in our Classroom, our Certified Information Security Auditor training enables you to develop the necessary expertise to support an organization in establishing, implementing, managing and maintaining an Information Security Management System (ISMS) based on ISO 27001.

During this training course, you will acquire the knowledge and skills to plan and carry out internal and external audits in compliance with ISO 19011 and ISO/IEC 17021-1 certification process.

About This Course

 

Based on practical exercises, you will be able to master audit techniques and become competent to manage an audit program, audit team, communication with customers, and conflict resolution.

After acquiring the necessary expertise to perform this audit, you can sit for the exam and gain the "Certified Information Security Auditor” credential. By holding this Certificate, you will demonstrate that you have the capabilities and competencies to` audit organizations based on best practices.

 

The training course is based on both theory and best practices used in ISMS audits

  • Lecture sessions are illustrated with examples based on case studies
  • Practical exercises are based on a case study which includes role playing and discussions
  • Practice tests are similar to the Certification Exam

 

The course is delivered both as a Live Online or Classroom environment, as follows;

  • Day 1: Introduction to Information Security Management Systems (ISMS) and ISO/IEC 27001 
  • Day 2: Audit principles, preparation and launching of an audit
  • Day 3: On-site audit activities

 

Learning Objectives

  • Understand the operations of an Information Security Management System based on ISO/IEC 27001 
  • Acknowledge the correlation between ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks
  • Understand an auditor’s role to: plan, lead and follow-up on a management system audit in accordance with ISO 19011
  • Learn how to lead an audit and audit team
  • Learn how to interpret the requirements of ISO/IEC 27001 in the context of an ISMS audit
  • Acquire the competencies of an auditor to: plan an audit, lead an audit, draft reports, and follow-up on an audit in compliance with ISO 19011

 

The exam covers the following competency domains:

 

  • Domain 1: Fundamental principles and concepts of an Information Security Management System (ISMS)
  • Domain 2: Information Security Management System controls and best practices based on ISO/IEC 27002
  • Domain 3: Planning an ISMS implementation based on ISO/IEC 27001
  • Domain 4: Implementing an ISMS based on ISO/IEC 27001
  • Domain 5: Performance evaluation, monitoring and measurement of an ISMS based on ISO/IEC 27001
  • Domain 6: Continual improvement of an ISMS based on ISO/IEC 27001
  • Domain 7: Preparing for an ISMS certification audit

Prerequisites

 

A foundational understanding of ISO/IEC 27001 and knowledge of audit principles. 

 

What's Included?

 

Refreshments & Lunch (Classroom only)

Course Slide Deck

Official Study Materials

CPD Certificate

The Exam

 

Who Should Attend?

 

  • Auditors seeking to perform and lead Information Security Management System (ISMS) certification audits
  • Managers or consultants seeking to master an Information Security Management System audit process
  • Individuals responsible for maintaining conformance with Information Security Management System requirements
  • Technical experts seeking to prepare for an Information Security Management System audit 
  • Expert advisors in Information Security Management

Our Guarantee

 

  • You can learn wherever and whenever you want with our robust classroom and interactive online training courses.
  • Our courses are taught by qualified practitioners with commercial experience.
  • We strive to give our delegates the hands-on experience.
  • Our courses are all-inclusive with no hidden extras.  The one-off cost covers the training, all course materials, and exam voucher.
  • Our aim: To achieve a 100% first time pass rate on all our instructor-led courses.
  • Our Promise: Pass first time or ‘train’ again for FREE.
    *FREE training and exam retake offered

Accreditation

Assessment

 

 

Delegates sit a combined exam, consisting of in-course quizzes and exercises, as well as a final 12 question, essay type exam on Day 3 of the course. The overall passing score is 70%, to be achieved within the 240 minute time allowance.

Exam results are provided within 24 hours, with both a Certificate and a digital badge provided as proof of success.

 

Provided by

 

This course is Accredited by NACS 

Similar courses

Our Certified Information Security Practitioner training and exam package. Attracts 31 CPD hours

More Information

The official Certified Risk Manager Training Course and exam package.

More Information

The official ISO 45001 Lead Auditor Training Course

More Information

Our ISO 22301 Lead Auditor Training Course.

More Information

Our ISO 22301 Lead Implementer Training Course.

More Information

The Official ISO 37001 Foundation Training Course

More Information

Our official ISO 37001 Lead Auditor Training Course & Exam Package

More Information

Our official ISO 37001 Lead Implementer Training Course & exam Package

More Information

Our official Certified Cybersecurity Manager Training Course.

More Information

The official ISO 27701 Lead Implementer Training and Examination Course.

More Information

Our official ISO 38500 Lead IT Corporate Governance Manager training course and exam package. Attracts 31 CPD hours

More Information

The ISO 27005 Lead Risk Manager training and exam package

More Information

The official 3 day training and exam package

More Information

Enhance your career by earning ISO 27701 Internal Auditor Certification - the standard of achievement for those who audit, monitor and assess information privacy technology, business systems and processes.

More Information

Our official Lead Cloud Security Manager training course enables participants to develop the competence needed to implement and manage a cloud security program by following widely recognized best practices.

More Information

ISO/IEC 27035 Lead Incident Manager training enables you to acquire the necessary expertise to support an organization in implementing an Information Security Incident Management plan based on ISO/IEC 27035.

More Information

ISO 37301 sets out the requirements and provides guidelines for establishing, developing, implementing, evaluating, maintaining, and continually improving a compliance management system (CMS)

More Information

The Certified 37301 Lead Auditor training course enables you to develop the necessary competence to perform compliance management system (CMS) audits by applying widely recognized audit principles, procedures, and techniques.

More Information

The Certified Information Security Analyst Foundation training allows you to learn the basic elements to implement and manage an Information Security Framework based on best practice.

More Information

Our Anti-Bribery Management System Internal Audit programme

More Information

Our 3 day ISO 14001 Internal Audit programme

More Information

Our 3 day GDPR Auditing programme

More Information

The IAPP's recently launched 2 day AI Governance programme, designed for those responsible for implementing and gaining value in AI solutions.

More Information

The Certified Crisis Manager training program enables individuals to enhance their skills in assisting organizations with the planning, establishment, maintenance, review, and ongoing enhancement of their strategic crisis management capabilities, following the principles outlined in ISO 22361 and incorporating top industry standards.

More Information

ISO/IEC 42001 is the world’s first AI management system standard, providing valuable guidance for this rapidly changing field of technology. It addresses the unique challenges AI poses, such as ethical considerations, transparency, and continuous learning

More Information

ISO/IEC 42001 is an international standard that specifies requirements for establishing, implementing, maintaining, and continually improving an Artificial Intelligence Management System (AIMS) within organizations.

More Information

The Certified Operational Resilience Manager training course is designed to provide professionals with the essential knowledge and skills needed to lead and manage an organization's operational resilience initiatives. The course covers core concepts and best practice in operational resilience, with a focus on identifying, mitigating and responding to crises.

More Information