ISO 27001 Interal Auditor ISMS
The ISO 27001 Internal Auditor ISMS (Information Security Management System) course will teach you everything you need to know to conduct an internal audit and work with security documentation. As part of the course, you will receive templates and sample forms for risk analysis and register, templates for creating a plan, program, audit checklist and a set of audit questions, including how to compile a final audit report.
Virtual Training or e-Learning?
We offer flexibility. You can choose from our selection of in-class courses as well as online courses.
Try a live virtual courseTarget Audience
The ISMS (Information Security Management System) course is intended for everyone involved in the internal audit of the information security management system and ensuring compliance of the organization with the ISO 27001 standard, whether the aim is to strengthen the security of certification, supervisory audit, or recertification of ISMS.
- Internal Auditors
- IT & Security and Risk Managers
- Information Security Consultants
Aims
- How to start an ISO 27001 audit
- How to prepare and implement an audit
- How to properly process an ISMS audit report
- Learn the principles of ISO / IEC 27001 from the beginning to the end of the audit
Benefits
Your organization will manage the entire ISMS process on its own in order to assess and evaluate the current state against the requirements of ISMS according to ISO 27001.
We will show you how to manage the entire process from the start of the audit to the preparation of the report on the evaluation and implementation of corrective and preventive measures.
Such an audit not only strengthens information security, including GDPR, but can also publicly declare your commitment to a secure society. A successful audit will improve the protection of your organization's private data to meet your market security and business management requirements.
Agenda
Day 1Hide agendaOpen agenda
09:00 – 10:30
Intro to ISMS
- Process approach
- Requirements of ISO 27001
- Principles of ISO standairs
- Deming's PDCA cycle in ISMS
- Norms and standards ISO 2700x
10:30 – 10:45
Coffee break
10:45 – 12:15
Foundations of ISMS
- ISMS planning
- Context of organization
- ISMS support requirements
- Risk analysis according to ISO 27005
- Leadership
- Internal audit and continuous improvement
- ISMS operation
12:15 – 13:15
Lunch
13:15 – 14:45
Appendix ISMS I.
Requirements - Annex A ISO 27001 A.5 – A.11
14:45 – 15:00
Coffee break
15:00 – 17:00
Appendix ISMS II.
Requirements - Annex A ISO 27001, A.12 – A.18
Day 2Hide agendaOpen agenda
09:00 – 10:30
Audit principles
- ISO 27001, ISO 27006
- Requirements of EN ISO 19011
- Internal audit process cycle
10:30 – 10:45
Coffee Break
10:45 – 12:15
Audit Workflow
- Audit plan
- Audit plan creation
- Roles
- Responsibilities
12:15 – 13:15
Lunch
13:15 – 14:45
- Audit report
- Working with the standard an checklists
- Audit documentation preparation
- Certification cycle of ISO 27001 ISMS
14:45 – 15:00
Coffee break
15:00 – 17:00
Conclusion, certification
- Exam tips
- Official exam ISO 27001 Internal auditor
The course is optimally balanced, so you will immediately build on your theoretical knowledge with practical examples that you can effectively use in the internal audit of ISMS ISO / IEC 27001.
- Block duration 90 minutes
- Hours 16 hours
- Refreshments Yes
- Exam Yes
Prerequisites
Experience in the field of information security, eg in the position of Manager, Auditor, or Cyber Security Architect, etc.
Marek Mitáček
Accredited trainer, Workshop Leader, Coach, co-author of methodologies and TAYLLORCOX Toolkits (sets of templates and sample forms) for IT Service Management ITSM, Project Management PRINCE2 and cyber security according to ISMS ISO / IEC 27001 and ZoKB.
One of the very first IT auditors in the Czech Republic. His rich practice began in 1996 in the company. GiTyFurtherly spent almost 10 years as an ITIL implementer at Český Telekom and since 2007 he has been a key auditor, accredited trainer at the TAYLLORCOX certification body
- TAYLLORCOX
- Český Telekom
- GiTy - Interní Auditor / Consultant
Vít Lidinský
- Since 2012, he has been working as a forensic expert in the field of economics, prices and estimates, with a special specialization in information systems and personal data protection.
- For more than 5 years he was the head of the department. and Chief Executive Officer at the Ministry of Informatics, the Ministry of Foreign Affairs of the Czech Republic and the State Treasury Shared Services Center (ICT Departments).
- He graduated from the Faculty of Business and Economics, majoring in information management - CULS. Here he gradually obtained a master's (Ing.) And doctoral degree (Ph. D.)
Jan Cuřín
Graduate of ČVUT FEL, subsequently a consultant with an international dimension in the field of implementation and optimization of the information management system (ITSM) and cyber (ISMS) security. He applies the acquired experience from the position of an accredited Lead Auditor in the areas of IT Service Management, ISMS and GDPR.
- Cyber Security standard author
- Lead Auditor ITSM ISO 20000, ISMS ISO/IEC 27001
- Approved Trainer & Lead Auditor GDPR (EU 2016/679) dle ISO/IEC 17067
Certification
ISO / IEC 27001 Internal Auditor ISMS | ISO 17024 Accredited
ISMS ISO 27001 Internal Auditor
Get the prestigious Information Security Management System certificate! The publisher is the internationally accredited RCB (Registered Certification Bodies) TAYLLORCOX organization focusing on the certification of ISMS (Information Security Management System) systems according to ISO / IEC 27001 standards.
- Duration: 60min
- Multiple choice
- Questions: 75
- Pass mark = 50%, i.e. 35/70
- Closed book exam
Graduate ratings
Excellent review ☆☆☆☆☆ from 699 reviewers
What makes our references exceptional? They are not one-off events. Clients come back to us regularly.
- Jiří V.
- 05.05.23
- ☆☆☆☆☆
| Velmi zdařilý kurz. |
- Jaroslav M.
- 16.11.22
- ☆☆☆☆☆
- Státní pokladna Centrum sdílených služeb
Kurz byl veden profesionálně za účelem zlepšení teoretických i praktických znalostí a dovedností. Práce v týmu při praktickém cvičení může a nemusí každému vyhovovat (pro nováčky v oboru může být náročnější). Celkový dojem velmi dobrý.
- Pavel V.
- 08.11.22
- ☆☆☆☆☆
- Freelancer
Výborný kurz, vše bylo naprosto v pořádku.
- GDPR Anonymizováno
- 08.11.22
- ☆☆☆☆☆
Bylo to super.
- Mario P.
- 08.11.22
- ☆☆☆☆☆
- Ernst&Young s.r.o.
Pan Cuřín je velmi příjemný a erudovaný lektor. Kurz hodnotím na jedna.
- Dagmar Vidriková
- 09.09.22
- ☆☆☆☆☆
- KOLAS, s.r.o.
Veľmi pekne ďakujeme za tento kurz, ktorý splnil moje očakávání a bol pre mňa prínosom. Oceňujem lektora p. Cuřína, jeho profesionalitu a vysokú odbornou úroveň.
- Petr Urban
- 09.09.22
- ☆☆☆☆☆
- DENSO Manufacturing Czech s.r.o
V průběhu kurzu prezentovány praktické příklady a zkušenosti.
- Vít B.
- 11.02.22
- ☆☆☆☆☆
Děkuji za kurz, který byl velice krásně veden, informace relevatní a celkově to stálo za to. Těžko se dali oči odtrvnout od obrazovky a kontrolovat cokoliv jiného mimo prezentaci.
- Martin N.
- 10.09.21
- ☆☆☆☆☆
- Dopravní podnik hl. města Prahy
Velmi dobré seznámení - přehled kompletních souvisejících problematik.
- GDPR Anonymizováno
- 10.09.21
- ☆☆☆☆☆
Skvěle pojaté, i pro laiky. Překvapením bylo, že není potřeba znát IT do hloubky, ale je to hodně o managementu.
View the next 10 reviews of our graduates
View the full list of reference clients.
Not sure if this is the right courese for you? Get in touch!
For assistance please give us a call.
We are available at +420 222 553 101 Always Monday to Friday: 9am - 5pm.
Cannot call? Send us a message.
Would you like a gift for your birtday?
