Presentation

This course is designed to help professionals enhance and update their competencies in information security management by understanding the key changes and new requirements introduced in ISO 27001:2022.

Information security audits are an essential management tool used by organizations to evaluate the effectiveness of their Information Security Management System (ISMS) and verify compliance with the requirements of ISO 27001 for information security, cybersecurity, and privacy protection.

Qualifications

Upon successful completion of the training programme, participants will be awarded the following qualifications:

  • Certificate in the Internal Auditor Course for Information Security Management Systems.
  • Certificate in Internal Auditor for Information Security Management Systems (with examination).

These qualifications will be issued by Bureau Veritas Business School.

Who is it for?

This course is aimed at:

  • Managers and information security officers within companies who wish to learn about the specific features of this standard so that they can implement it within their organisations.
  • Consultants specialising in the development and implementation of information security management systems.
  • IT support managers and auditors who wish to receive training in this standard in order to carry out their verification processes.

What will you achieve through the course?

By the end of the course, participants will be able to:

  • Understand the key concepts and definitions of the ISO 27001:2022 standard for information security and privacy protection.
  • Correctly identify the new security controls set out in the ISO 27001 standard, and the requirements necessary to implement an Information Security Management System.
  • Understand the guiding principles that enable effective information security management.
  • Develop the internal audit procedures required to review security controls and risk management within an organisation, with the aim of ensuring compliance with information security policies and regulations.

Syllabus

Module 1: Information Security Management Systems – ISO 27001:2022

2. Data Protection Compliance Programme

3. ISO 27001:2022 – Structure and Requirements

4. ISO 27001:2022 – Security Controls (Annex A)

5. Development of a Security Infrastructure and Implementation of ISO 27001

5. Risk Assessment and Risk Management Methodologies

Module 2: Auditing and Certification of Information Security Management Systems

1. Techniques for Ensuring Data Protection Compliance

2. Guidelines for Auditing an Information Security Management System

3. Planning, Preparing, and Conducting an ISO 27001 Audit

4. Audit Reporting, Nonconformities, Corrective Actions, and Follow-up Activities

COURSE DETAILS

STUDY METHOD: eLearning

DURATION: 45 hours

PRICE: 455 €

COURSE LANGUAGE: English


Got questions? Contact us