Information Security Management Systems (ISMS – ISO 27001:2022) Foundation

A one-day course to provide a foundation understanding of ISMS .

This course for prospective internal auditors covers the purpose, structure and content of ISO 27001.

This course is designed to provide attendees with the skills and knowledge to perform internal information security audits, within their organisations, against the ISO 27001 standard. It ensures the correct application of accepted audit protocols as per ISO 19011 and teaches the skills necessary to plan and execute internal audits as well as reporting.

Objective

Upon successful completion, attendees will have gained an understanding of:

  • Information security systems and the need for audits.
  • The roles and responsibilities of auditors.
  • An overview of the aim, structure and uses of ISO 27001.
  • How to establish an internal audit program.
  • How to plan, prepare, perform and report on internal audits in accordance with ISO 19011.
  • Gathering objective evidence through effective interviewing, observation & sampling.
  • Analyzing and interpreting information in order to determine conformance.
  • How to verify corrective actions and deal with difficult audit situations.

Prerequisites

For successful completion of this course, it is expected that you have prior knowledge of the following management principles and concepts:

  • The PDCA cycle.
  • Business continuity management system principles and concepts.
  • Knowledge of the requirements of ISO 27001 and the commonly used business continuity management system terms and definitions, as given in ISO 27001, which may be gained by completing the Information Security Management Systems (ISMS – ISO 27001:2022) Foundation  

Audience

This course is suitable for the following:

  • Information technology managers.
  • Information security managers and administrators.
  • Quality officers.
  • Risk managers.
  • Information security consultants occupied with the task of participating in and/or leading audit teams during audits of the information security management systems.

Accreditation

This course has been registered and certificated by the CQI and IRCA Governing Body and satisfies the formal training requirements for individuals seeking registration under CQI and IRCA or other Auditor Certification Schemes. CQI and IRCA Reference No: XYZ. Participant evaluation is through continuous assessment during the course and written exam at the end of the course.

Additional benefits include

Access to course material augmented with exclusive insights from big data analytics based on our database of millions of audit findings worldwide

Free access to our online self-assessment tool where you can quickly implement and practice learnings as well as to measure your company performance against specific management system standards

Management Systems Training

Food safety training

The food and beverage industry is moving to satisfy demands from international consumers and to open new market opportunities

Health and safety training

Your company is expected to care for its employees by managing safety and health in a professional way

Healthcare training

Every patient and service user across the globe should get the best care possible

Medical devices training

Production of medical devices is a strictly regulated business. In almost all countries, and for most medical products, there are requirements and standards to which manufacturers need to show compliance

Quality & performance training

An effective quality management system in place can improve your company’s quality processes and overall performance and success

Social responsibility training

Ensuring your commitment to safeguard human rights and operate in an ethical, responsible manner is essential to instill ethical practices and promote a culture of corporate sustainability