DQS Academy provides a variety of management system training courses, utilizing our industry experts to provide knowledge on the subjects most important to setting up and maintaining a management system.
In this three-day course, you will learn an overview of the structure and requirements of an effective Information Security Management System (ISMS) and gain an understanding of how to conduct internal audits. You’ll also learn why internal audits are an integral part of the success of an Information Security Management System.
Content
Learning Objectives:
• Identify the key requirements and benefits of ISO 27001
• Understand the terminology of ISMS management systems
• Understand the Objectives, Purpose, Planning and Documenting Internal Audits
• Understand the Process Approach Methodology
• Understand Risk Based Thinking in relationship to the standard
• Understand how to audit the following elements:
o Statement of Applicability and Annex A.5 Information Security Policies
o Annex A.6.1 Organization Security – Internal Organization
o Support including Annex A.7 Domain Human Resource Security
o Operations including all remaining Annex A Controls
o Support
o Improvement
o Internal Audit
o Management and Management Review