ISO/IEC 27001 Auditor Including Exam
From: R9 500,00
Price excluding VAT
The ISO/IEC 27001 Auditor provides auditors who wish to understand the specific requirements of auditing Information Security Management Systems (both internal and external resources) for conformity with the ISO/IEC 27001 standard so they can:
- Perform audits against ISO/IEC 27001
- Lead organizations through an audit program
- Direct audit teams
Internal auditors working in an organization which is implementing or have already ISO/IEC 27001 certification will find this course useful to improve not only their understanding of the subject but also the application of ISO/IEC 27001 within their organization.
ISO/IEC 27001 is an international standard for Information Security management. It provides a model to establish, implement, maintain, and continually improve a risk-managed Information Security Management System (ISMS).
The standard forms the basis for effective management of sensitive, confidential information and for the application of information security controls.
An organization that conforms to the ISO/IEC 27001 standard possesses clear, objective proof of its commitment to the continued improvement of control over its sensitive and confidential information.
An ISO 27001 audit is a review process that ensures your organization’s information security management system (ISMS) aligns with the most recent information security best practices, as defined by ISO/IEC 27001:2022 guidelines. Organizations must conduct a series of regular internal audits and external audits to receive and retain their ISO 27001 certification.
An ISO 27001 internal audit is a review of a company’s ISMS completed by objective, internal staff trained in ISO 27001 standards or an external contractor hired to work alongside an internal team.
Under ISO 27001 Clause 9.2, a consistent ISO 27001 audit program is required to maintain compliance. An approved ISO 27001 audit plan defines how frequently internal audits are conducted, the methods used to complete the audit, and who is responsible for planning, completing, and reporting audit results.
The ISO/IEC 27001 Practitioner course is aimed at those who are:
- Third-party auditors working for Certification Bodies, responsible for conducting audits which certify organizations against ISO 27001 and ISO 19011
- Internal auditors seeking to understand the specific requirements of auditing Information Security Management Systems needed to confirm that an organization conforms to the ISO 27001 or ISO 19011 standard
There is no pre-requisite for the Auditor course, but it is strongly recommended that candidates have:
- ISO 27001 Foundation / Practitioner
- Audit experience
ISO/IEC 27001 Overview
ISO/IEC 27001 is an international standard for Information Security management and provides the basis for effective management of sensitive / confidential information as well as the implementation of information security controls.
Organizations can utilize the ISO/IEC 27001 standard to demonstrate their conformance to best practice and excellence in Information Security management. An organization that conforms to the ISO/IEC 27001 standard possesses clear, objective proof of its commitment to continued improvement and control over its sensitive and confidential information.
ISO/IEC 27001 therefore provides reassurance to sponsors, shareholders and customers that the organization has expert control over its risk management and data security.
Torque IT offers authorized ISO/IEC 27001 instructor-led training and certification solutions that will ensure that you get the most from your human capital investment and that both productivity and efficiency are maximized.
The standard can be integrated with other management system framework standards, such as the quality standard ISO 9001 and ISO/IEC 20000 for IT Service Management.
Torque IT strives to be the ISO/IEC 27001 Accredited Training Organisation (ATO) provider of choice to our clients across South Africa and Africa.
Torque IT’s ISO/IEC 27001 training courses will help you deliver smarter solutions both on-time and within budget. We provide Standard Best Practice training and certification for novice and experienced managers.
APMG International ISO/IEC 27001™is a trademark of The APM Group Limited. All rights reserved. The APMG International ISO/IEC 27001 and Swirl Device logo is a trademark of The APM Group Limited, used under permission of The APM Group Limited. All rights reserved.