Course Overview
This Internal Auditor Training Course equips participants with the knowledge and practical skills required to plan, conduct, report, and follow up internal audits of a ISO/IEC 27001 Information Security Management. Based on the ISO 19011 auditing guidelines, this course combines theoretical instruction with practical exercises and case studies.
Learning Objectives
- Plan and prepare an internal audit of a ISO/IEC 27001 ISMS
- Conduct audit interviews and gather objective evidence
- Document audit findings and nonconformities effectively
- Write clear and concise audit reports
- Follow up on corrective actions arising from internal audits
- Understand the requirements of ISO 19011 for management system auditing
Topics Covered
- ›ISO 19011 – Guidelines for auditing management systems
- ›ISO/IEC 27001 requirements review
- ›Audit principles, types and purpose
- ›Internal audit programme management
- ›Audit planning and preparation
- ›Conducting opening meetings
- ›Audit interview techniques
- ›Gathering and evaluating audit evidence
- ›Identifying and documenting nonconformities
- ›Audit reporting and closing meetings
- ›Corrective action follow-up
Who Should Attend
- Internal auditors or those preparing to become internal auditors
- Management system coordinators and managers
- Quality, EHS, security, and compliance professionals
- Consultants seeking to broaden their auditing skills
Learning Outcomes
- Plan and execute internal audits independently
- Document findings and prepare internal audit reports
- Manage corrective action follow-up processes
- Contribute to continual improvement of the management system
