ISO 27001

ISO 27001:2013 Awareness Program

ISO/IEC 27001:2013 Internal Auditor

ISO 27001:2013 Awareness Program

Course Introduction

EPIC’s ISO 27001:2005 Awareness Training Programmme provides the overview of the purpose and requirements of ISO 27001 as a tool for the management of information security in the organization. EPIC’s faculty explains the clauses of ISO 27001:2013 in detail, providing a base for understanding the Information Security Management System standard elements. Delegates learn by participating in syndicate exercises and detailed discussions.

Course Objective

ISMS awareness course is a one-day course covering the requirements of ISO 27001:2013 standard with examples from the expertise of the faculty.
This training programme provides the insight to the advantages of implementing an Information Security Management System and the basic requirements of the standard. By attending this programme, delegates will be able to:

  • Understand the purpose of an environmental management system and explain the legislative framework relevant to an ISMS
  • Explain the purpose and intent of the ISO 27000 series of standards
  • Describe the ISO 27001 requirements

Course Content

  • Introduction
  • Introduction to Information security management concepts
  • ISO 27000 family of standards
  • ISO 27001:2005 Information Security Management System requirements
  • Syndicate exercise

Who Should Attend

  • Information security managers
  • Professionals who want to implement the standard
  • Professionals planning to attend higher level training courses like internal auditor courses for Information Security Management System

Certificate

Delegates will be awarded a certificate of attendance upon successful completion of the course.

Course Duration

1 Day

ISO/IEC 27001:2013 Internal Auditor

In this two day course, our expert tutors will teach you how to plan, execute and report on an audit of an ISMS in an organization assessing its conformance with ISO/IEC 27001:2013.
You should already have a good understanding of the requirements of the current standard, and our tutors will expand on your existing knowledge to help you develop the specialized skill and expertise to conduct an internal audit.
We’ll show you how to manage the entire process end-to-end from initiating an audit to reporting on the assessment and conducting a follow-up.
Your learning will rapidly develop using a balance of theory and practical activity, so that you can apply your knowledge effectively during an audit.

Who should attend?

This is intended for those who will be involved in conducting internal audits of an ISMS that conforms to ISO/IEC 27001:2013 in an organization.
Suggested job roles and their teams include:

  • Information security managers
  • IT and corporate security managers
  • Corporate governance managers
  • Risk and compliance managers
  • Information security consultants

Prerequisites:

You should already have knowledge how ISO/IEC 27001:2013 works (for delegates who do not have this, we recommend attending our one day requirements course)

What will I learn?

  • What are the principles of auditing conformance to ISO/IEC 27001:2013
  • What are audit activities
  • How to initiate an audit
  • How to prepare audit activities
  • How to conduct audit activities
  • How to prepare and distribute an audit report
  • How to complete the audit
  • How to conduct an audit follow up

How will my organization benefit?

  • Your company will have an internal resource and process to be able to conduct its own audit of its ISMS to assess and improve conformance with ISO/IEC 27001:2013
  • Successful auditing will improve the protection of your organization’s private data to meet your market assurance and corporate governance needs

Certificate

Delegates will be awarded a certificate of attendance upon successful completion of the course.

Course Duration

3 Days