Certified ISO 27001 ISMS Internal Auditor Training Course

Provided by

Enquire about this course



SKU: 1193

  • Learn from specialist consultants how to drive continual improvement within your organisation’s information management system (ISMS).
  • Discover how to identify opportunities for improvement and take corrective action to maintain conformity to the ISO 27001 standard.
  • Our Classroom / Live Online option allows you to study your way, keeping travel and costs down to a minimum.
  • Our Ely / Online option provides the flexibility of attending our certified COVID-19 secure training centre or booking as an online delegate. Find out more.
  • IBITGQ and CIISec (The Chartered Institute of Information Security) accredited, two-day training course.
  • Successful completion of the course and included exam leads to the ISO 17024-Certificated ISO 27001 Certified ISMS Internal Auditor (CIS IA) qualification and 14 CPD/CPE points.




  • Training course outline

    Learn how to drive continual improvement within your organisation’s information management system (ISMS) and find out how to identify opportunities for improvement and take corrective action to maintain conformity to the ISO 27001 standard.

    The course will cover:

  • A detailed overview of the structure and requirements of ISO 27001;
  • The certification process;
  • The different approaches to conducting an ISO 27001 audit;
  • Reporting, identifying and compiling evidence-based nonconformities of intent, implementation and effectiveness; and more.

  •   Download training course outline

    COVID-19: remote delivery options

    We would like to reassure our clients that all training courses will go ahead as scheduled during the current COVID-19 situation. As a company that fully embraces flexible and remote working, we have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option enables you to attend either in person or online. Please also refer to our COVID-19 policy.

    Certified ISO 27001 ISMS Internal Auditor training course benefits

    Led by specialists

    An experienced ISO 27001 auditor and practitioner will explain how to lead an audit from start to finish.

    Designed by experts

    Designed by IT Governance Director Steve Watkins, a contracted technical assessor for UKAS.

    Hands-on study

    Gain experience of the practical application of the audit process to ISO management systems through discussion and role play.

    Aligned with best practice

    Aligned with the best-practice ISO 19011:2011 (Guidelines for auditing management systems) audit methodology.

    Learn from anywhere

    Choose whether you attend Live Online or in person at one of our training venues throughout the UK.

    See what our previous learners think about this course

    79%

    were happy with the pace of the course

    95%

    found the course content to meet their expectations

    95%

    agreed the course content was relevant.

    98%

    thought adequate course materials were provided.

    “Really interesting course material, delivered in a flexible style by a very experienced tutor and auditor – extremely relevant for my role. Would definitely recommend this course.”

    - Catherine Temple, Medical Management Systems

    “Max was very knowledgable of the material, supportive and reassuring in respect of the exam. Very pleased with the result he helped me achieve.”

    - Nick Wells, Deputy Information Security Officer

    “Max was a good trainer, engaged with all. I would book a course with IT Governance again based on the quality of the trainer.”

    - Alex Nisbet, Senior QSHE Manager National

    Who should attend this course?

    This course is aimed at individuals responsible for conducting ISO 27001 or information security internal audits. Depending on your organisation’s size, this may include a number of staff members, representing a range of departments such as HR, finance or operations:

  • IT Manager
  • Compliance Manager
  • Information Assurance Officer
  • Information Security Manager
  • Internal Auditor
  • Operational Risk Manager


  • Your Learning Path

    Find out how the Certified ISO 27001 ISMS Internal Auditor Training Course will help you start or enhance your knowledge and career.

    This course is an essential component of the following learning path:

  • ISO 27001 roles


  • ×

    Why choose IT Governance for your training needs?

  • We’re internationally recognised as the authority on ISO 27001 – our team led the world’s first ISO 27001 certification project, and since then we have trained more than 8,000 professionals on information security management system (ISMS) implementations and audits.
  • Trained by industry experts – our trainers are working consultants with years of practical, hands-on experience.
  • Learn from anywhere – as a company that fully embraces flexible and remote working, we have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option enables you to attend either in person or online.
  • Pass first time or train again for free – we have trained more than 17,000 people and we’re confident you’ll pass with us first time. If you don’t, we’ll train you again for free.*
  • Choose the method that suits you – we offer classroom, instructor-led online, self-paced online, e-learning and in-house training options.
  • Access your training anywhere – all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course.
  • Business solutions to suit you – whether you’re a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.


  • * conditions applicable

    Course details

    What does this training course cover?

  • An overview of the structure and requirements of ISO 27001.
  • The mandatory documents for an ISO 27001-compliant ISMS.
  • The relationship between ISO 27001, ISO 19011 and ISO 27007.
  • How an internal audit contributes to the effectiveness of an ISMS.
  • Internal audit concepts, terms and definitions.
  • The principles of auditing conformance to ISO 27001.
  • The resources required for an internal audit.
  • The roles, responsibilities and desired attributes of the internal auditor.


  • The different approaches to conducting an internal audit.
  • How to plan, develop and manage an effective audit programme.
  • How to plan individual internal audits.
  • How to conduct an internal audit and handle the interview process.
  • How to identify and report evidence-based nonconformities.
  • How to take corrective action and conduct an internal audit follow-up.
  • The seven principles of a quality management system.
  • An overview of the certification process.


  • Course agenda:

  • Internal audit concepts
  • Why pursue ISO 27001 certification?
  • Structure and content of ISO 27001
  • Internal audit resource
  • The audit programme


  • Planning individual internal audits
  • Conducting audits
  • Reporting
  • Corrective action and follow up


  • What’s included in this course?

  • A professional training venue with lunch and refreshments;
  • Full course materials (digital copy provided as a PDF file);
  • The ISO 27001 Certified ISMS Internal Auditor exam; and
  • A certificate of attendance.


  • What equipment do I need?

    You will need a laptop for the duration of your course and exam. Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.

    Course duration and times

    Day 1: 9:30am – 4:30pm
    Day 2: 9:15am – 5:00pm

    Course locations

  • Learn from anywhere with our instructor-led Live Online courses, or Classroom / Live Online delivery options. Learn more.
  • Alternatively you can study in a classroom at one of our venues in London or Ely (Cambridgeshire).


  • Are there any prerequisites for this course?

    Before joining this course, you need to have attended the Certified ISO 27001 ISMS Foundation training course or you have a good working knowledge of ISO 27001 gained through practical experience.

    Is there any recommended reading?

    We strongly recommend you purchase and read the standard prior to attending the course:

  • ISO/IEC 27001 2013 and ISO/IEC 27002 2013


  • We also recommend that you purchase and read the following textbooks:

  • ISO 27001/ISO 27002 – A Pocket Guide
  • An Introduction to Information Security and ISO 27001:2013 – A Pocket Guide


  • Exams and qualifications

    Certified ISO 27001 ISMS Internal Auditor exam

    Attendees take the ISO 17024-certificated, ISO 27001 Certified ISMS Internal Auditor (CIS IA) exam set by IBITGQ ( International Board for IT Governance Qualifications ). There is no extra charge for this exam.

  • Delivery method: Online
  • Duration: 60 minutes
  • Questions: 40
  • Format: Multiple choice
  • Pass mark: 65%


  • This course is equivalent to:

    14

    CPD points

    What qualifications will I receive?

    ISO 27001 Certified ISMS Internal Auditor (CIS IA).

    Accreditation

    This course is accredited by IBITGQ, as well as CIISec (The Chartered Institute of Information Security)

    You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the IBITGQ/ GASQ successful candidate register .

    How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately after completing the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
  • Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam.
  • Results notifications and certificates are emailed directly to candidates by the relevant exam board; please note that hard-copy exam certificates are not issued.


  • Do I need proof of identity to take the exam?

    Delegates must bring a form of photographic ID with them as the invigilator my request to check it prior to the exam.

    Can exams be retaken?

    Yes, if you are unsuccessful on the first attempt, you can retake the exam for an additional fee. You can email us to schedule the retest.

    Ways to learn

    Learn from anywhere with our range of instructor-led courses

    Wherever you are in the world, you can now attend an IT Governance online course, and get the full benefit of a classroom session.

    To make your life as easy as possible, we offer 3 ways to attend an instructor-led course:

    Classroom

    Our instructor-led courses are hosted at professional training centres located in major cities across the UK.

    Learn more

    Live Online

    Our instructor-led Live Online courses are hosted and delivered live by one of our expert tr

    Enquire

    Start date Location / delivery
    01 Nov 2022 United Kingdom Book now

    Related article

    The CISSP exam is now updated to reflect the most pertinent issues facing today’s cybersecurity professionals, along with the best practices for mi...