ISO 27001 Internal Auditor Course

Course overview

ISO 27001 is a recognised international standard for best practice in information security management systems (ISMS) within any organisation. This course will prepare you to plan and execute audits of information security management systems in line with the international standard ISO/IEC 27001.

Who should attend?

The ISMS Course is for personnel involved in leading audits of an Information Security Management System that conforms to ISO/IEC 27001:2013 in any organisation.

Suggested job roles and their teams include:

Information security managers

IT and corporate security managers

Corporate governance managers

Risk and compliance managers

Information security consultants

Course Content

Purpose and business benefits of an ISMS, ISMS standards, ISMS audits and third party Certification

Role and skills required by an auditor when planning, conducting, reporting and following up on an ISMS audit in accordance with ISO/IEC 27001:2013, ISO/IEC 27002:2013

Information technology

Security techniques

Code of practice for information security controls

ISO 19011:2011

Guidelines for auditing management systems and where applicable

ISO 17021:2015

Conformity assessment – Requirements for bodies providing audit and certification of management systems


Your company will have an internal resource and process to be able to conduct its own audit of its ISMS to assess and improve conformance with ISO/IEC 27001:2013

You will gain a professional qualification that certifies that you have the knowledge and skills to be able to lead a team to conduct an audit of an ISMS in any organization that satisfies CQI-IRCA guidelines

Successful auditing will improve the protection of any organization’s private data to meet market assurance and corporate governance needs