On successfully completing the course, delegates will becapable of performing effective internal audits of acompany’s information security management systems andreporting the outcome. • an appreciation of the importance of controlling Information Security in all types of business activities; • the ability to plan, conduct and report on a process based activity; • an appreciation of Risk Analysis process; • detailed review and interpretation of the main requirements of ISO.IEC 27001:2013; • learn how to use Annexure A of ISO/IEC 27001:2013; • an appreciation of documented management systems to control Information Security; • evaluating corrective actions for root cause and effectiveness;

This course is not only a requirement for those who are to be used for internal information securityaudits, but also an essential course for SeniorManagement, Information Security Managers andLine Management

• The Process Approach; • Audit Management; • Audit reporting, Planning and Preparation • Problem Solving; • Identifying non-conformances • Detailed review of the requirements of ISO/IEC 27001:2013 • Information Security Management Issues- Documentation • Exercises to reinforce skills learned in the course