RM-7021: ISO/IEC 27001:2005 - Internal Auditor Training

Email this page

Course Description: This course teaches students the fundamentals of auditing information security management systems to ISO/IEC 27001:2005 (BS 7799-2:2002). This course teaches students how to conduct audits within their organization. The auditing exercises and lectures are based on ISO 19011:2002, “Guidelines for Quality and/or Environmental Management Systems Auditing.” Experienced instructors guide students through internal audits that are required for a quality management system based on ISO/IEC 27001:2005. Students gain necessary auditing skills through a balance of formal classroom tutorials, group workshops, and open forum discussions.

Who Should Attend? IT Security Officers, IT Managers, Information Security Consultants.

Format: 3-days, Interactive classroom lecture.

Curriculum:

• Review the requirements of ISO/IEC 27001:2005
• Understand the relationship between ISO/IEC 27001:2005 and ISO/IEC 17799:2005
• Learn how to assess Security Threats and Vulnerabilities
• Understand Security Controls and Countermeasures
• Understand the roles and responsibilities of the auditor
• Learn how to plan, execute, report, and follow-up on an Information Security Management System Audit.

Prerequisites: Prior knowledge of ISO/IEC 17799:2005 and ISO/IEC 27001:2005 is beneficial.

Examination: None.

Reference Materials : Each student receives comprehensive course manuals with reference materials, including: Copy of ISO/IEC 27001:2005, Copy of ISO/IEC 17799:2005, and Copy of ISO 19011:2002.

Price: $1695 (through 06/30/2007)

Avant is a authorized BSI Training Distribution Partner.
All content is owned and delivered by BSI Management Systems.