Course Overview

This course prepares participants to perform internal audits of an Information Security Management System (ISMS) based on ISO 27001:2022 and ISO 19011 auditing guidelines.

It provides essential skills to plan, conduct, report, and follow up on audits, ensuring conformance and supporting continual improvement.

Duration

🕒 3 Days (Total: 24 Hours)

Course Objectives

By the end of this course, participants will be able to:
✅ Understand the structure and requirements of ISO 27001:2022.
✅ Grasp internal audit principles and processes in line with ISO 19011.
✅ Plan and conduct effective internal audits.
✅ Identify and report non-conformities and opportunities for improvement.
✅ Support corrective action processes and management reviews.

Who Should Attend?

✔ ISMS internal auditors and audit team members.
✔ Information security officers and IT professionals.
✔ Quality and compliance personnel.
✔ Anyone seeking to become an internal ISMS auditor.

Course Contents

📌 Introduction to ISO 27001:2022 – Clauses and Annex A controls.
📌 Audit Process Overview – Principles and ISO 19011 guidelines.
📌 Audit Planning – Scope, criteria, and audit programs.
📌 Conducting Audits – Interviewing, evidence collection, and sampling.
📌 Reporting & Classifying Findings – Non-conformance and observations.
📌 Corrective Actions & Follow-up Activities.
📌 Auditor Competence & Professional Ethics.
📌 Practical Workshops, Case Studies, and Role-Playing.

Certification

🎓 Successful participants receive an internationally recognized Internal Auditor Certificate from RIMAN Training Center.