Internal audit on Information Security MS - ISO 27001 (ISMS)

The ISO 27001:2013 standard specifies requirements for managing an organisation’s information security system structure. In essence, the standard provides a model framework for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system.

The adoption of digital technology has become more prevalent in recent years. Organisations must ensure that they have a robust information security management system to safeguard the interest of all stakeholders involved.

We hope to impart our knowledge/guide on how an organisation can achieve a robust information security management system through this course. We will also provide a step-by-step guide on how individuals can conduct a proper internal audit.

With this need for implementation comes a need for understanding of the requirements.

From this course, we will walk you through:

• General concepts and principles of auditing

• Establishing and preparing for the audit

• Performing the audit (Included: How to conduct a mock audit based on a compiled checklist?)

• Reporting the audit results

• Post-audit activities and CAPA planning

This course aims to educate individuals on conducting an internal audit for ISO 27001:2013. They can perform their mock audit before the actual ISO audit with this knowledge.

Your journey to successfully conducting an internal audit based on requirements of ISO 27001:2013 Information Security Management System (ISMS) is only clicks away. We welcome onboard the Stendard Academy, we put quality at the centre of your business and make it easier!