• Location(s) Available
  • Date(s) Available
  • Certificate Level

Secured with 2048-bit SSL encryption


Course Duration: 2 days | English


  • Gain the skills to perform internal audits that ensure the ISMS maintains conformity to the ISO 27001 standard. Find out how to identify opportunities for improvement and take corrective action.
  • The course is presented by an experienced ISO 27001 practitioner offering real-world expertise and insights. You will learn how to lead an audit from start to finish through discussion, case studies and role play
  • Internal Audit Concepts, Terms and Definitions
  • The role of the Internal Auditor and ISMS Audits
  • The Certification Process
  • Detailed overview of the structure and requirements of ISO 27001 Mandatory documents for an ISO 27001-compliant ISMS
  • Internal Audit Resourcing
  • The Auditor’s challenges and personal traits
  • Developing an Audit Programme
  • Understanding different approaches to conducting an ISO 27001 Audit
  • Applying ISO 19011 and ISO 27007 Audit Processes
  • Planning Individual Internal Audits
  • Conducting the Internal Audit; and Handling the interview process
  • Understanding the Audit Trail Concept
  • Reporting, identifying and compiling evidence-based non-conformities of intent, implementation and effectiveness
  • Quality Management Principles in Internal Audits
  • Managing Corrective Actions and Follow-ups
  • ISO 27001 and Information Security Management Framework Auditors
  • Data Protection Officers
  • CISA, CISM, CISSP, CRISC or CISMP certificate-holders wishing to apply their current knowledge to the broader context of cyber security
  • Auditors / Consultants who require an understanding of cyber security risk management outcomes and processes
  • ISO27001 Certified ISMS Internal Auditor (CIS IA) qualification. Achieved by taking the CIS IA examination - 60-minute, multiple-choice, ISO 17024-certificated exam set by IBITGQ
Day 1
  • Internal Audit - Key Concepts
  • Why Pursue ISO27001 Certification
  • Structure and Content of ISO27001
  • Internal Audit Resource
  • The Audit Program
Day 2
  • Planning Individual Internal Audits
  • Conducting Audits
  • Audit Working Papers and Reporting
  • Corrective Action and Follow-up
  • Bring water & refreshments to help you stay focused
  • Bring stationery, a notebook and a calculator
  • Laptop / Tablet with Internet Access for End of Course Online Exam
  • Recommended Reading: ISO27001/ISO27002 A Pocket Guide by Alan Calder. To order email:training@africarisk.test