ISO 27001: 2022 Internal Auditor

During this training course, you will acquire the knowledge and skills to plan and carry out internal audits in compliance with ISO 19011.

Based on a number of exercises, you will learn how to utilise audit techniques and become competent to manage an internal audit programme, communicate with customers, and manage conflict resolution.

After acquiring the necessary expertise, you can sit for the exam and gain 'Certified ISO/IEC 27001: 2022 Internal Auditor' Certification. By holding this Certificate, you will demonstrate that you have the capabilities and competencies to audit organizations based on best practices.

Learning objectives

By the end of this training course, the participants will be able to:

• Explain the concepts and principles of an information security management system (ISMS) based on ISO/IEC 27001: 2022
• Analyse the ISO/IEC 27001: 2022 requirements for an ISMS from the perspective of an auditor
• Evaluate the ISMS conformity requirements
• Plan, conduct, and close an ISO/IEC 27001: 2022 compliance audit programme
• Assist an organisation in transitioning from ISO 27001: 2013
• Deliver an ISO/IEC 27001: 2022 Internal audit programme

Our approach

• This training is based on both theory and best practices used in ISMS audits
• Lessons are illustrated with examples based on case studies
• Practical exercises are based on a real world case study
• Practice tests are similar to the Certification Exam

Course Overview

• Module 1 Foundational Audit principles and concepts of Information Security  Management System (ISMS) 
• Module 2 The Information Security Management System (ISMS) 
• Module 3 ISO 19011 audit concepts and principles 
• Module 4 Preparation of an ISO/IEC 27001 audit 
• Module 5 Providing an ISO/IEC 27001 audit 
• Module 6 Closing an ISO/IEC 27001 audit 
• Module 7 Managing an ISO/IEC 27001 Internal audit programme

Course Agenda

• Day 1: Introduction to the information security management system (ISMS) and ISO/IEC 19011
• Day 2: Audit principles, preparation, and initiation of an audit
• Day 3: Audit activities, Closing the Audit and the Certification exam

• All candidates at official training courses are tested throughout their course with quizzes and exercises, in combination with a final exam held on the last day of the course.  Both elements are a part of the overall score. For this course, the final exam constitutes a 10 question essay type which should be completed within 125 minutes. A passing score is achieved at 70%. Self-study candidates can purchase an exam voucher from our Store.
• Exam results are returned within 24 hours, with successful candidates receiving both a digital badge and a Certificate of Achievement

• A general understanding of ISO/IEC 27001: 2022 and knowledge of audit principles.

This course is Accredited by NACS and Administered by the IECB

Refreshments & Lunch (Classroom courses only)                

Course Slide Deck                          

Official Study Guides                    

CPD Certificate        

The Exam

• Auditors seeking to perform Internal Information Security Management System (ISMS) certification audits
• Managers or consultants seeking to master an Information Security Management System audit process
• Individuals responsible for maintaining conformance with Information Security Management System requirements
• Technical experts seeking to prepare for an Information Security Management System audit 
• Expert advisors in Information Security Management