Why is the ISO27001 Internal Auditor important?
The ISO/IEC 27001:2005 Information Security standard has become the ‘de-facto’ specification and best practice framework, ensuring that organisations worldwide secure their confidential information assets and maintain their competitive position.
The role of an Internal Auditor in an organisation is crucial to continued compliance to ISO27001 and in making sure that the internal information security requirements are maintained. Reviewing the effectiveness of security controls and recommending suitable modifications are at the heart of the continual process improvement of any successful Information Security Management System (ISMS). In addition to ensuring that the ISMS meets the needs of the organisation, the Internal Auditor can also audit 3rd party suppliers and partners to ensure that they have adequate information security controls in place.
The ISO27001 ISMS Internal Auditor Training Course is designed to prepare delegates to fulfil the duties of an Internal Auditor to fully audit compliance with ISO27001 and against the controls contained in the related ISO27002 Best Practice standard.
|ISO27001 ISMS Internal Auditor Training Course
14-15 May 2012 in London
Using the principles based on the ISO 19011:2002 internal audit best practice, this course offers complete guidance for information security management systems auditing and includes the following:
- Securing agreement of the goals for individual audits within an audit programme
- Reducing duplication of effort when conducting combined information security audits
- Ensuring audit reports follow the best format and contain all the relevant information
- Evaluating the competence of members of an audit team against appropriate criteria
Ensure your organisation maintains compliance to ISO27001 and continually improves the management of it information security.