+94 11 2 825177, +94 77 7372697
December 03, 2019
Information being a valuable asset and a building block and key to the growth of any organization needs to be suitably protected like any other important business asset. In the modern world this asset becomes crucial for success and maintaining credibility. If this asset is compromised then the organization may have to face various threats and risks like brand image erosion, business disruption, financial and productivity loss etc. Information security is the protection of information from a wide range of threats in order to ensure business continuity, minimize business risk, maximize return on investments and increase business opportunities.
The course will be conducted by our experienced lead auditors, who have audited numerous organizations. This intensive course is a key requirement in becoming a registered auditor / lead auditor. The course is structured to provide the knowledge and skills required to assess the Information Security Management System of an organization with respect to the requirements of the ISO 27001 - 2013 standard.
This comprehensive five-day course comprises of case studies, training, role-plays to ensure that the participant thoroughly understands the role of an auditor / lead auditor and acquires the expertise needed to perform effective audits. Participants who successfully complete the course will be presented with an IRCA (International Register of Certificated Auditors) registered 'Certificate Of Successful Completion.'
1. ISMS concepts and ISO 27001 standard
2. Auditing principles
3. Roles and responsibility of auditors · Auditors and lead auditors
4. Planning an audit· Pre-audit planning
5. Conducting an audit
6. Reporting audit results
7. Corrective actions
8. ISO 27001 registration
9. Exercises / Roleplay (50% of course time)
10. Written examination
Participants will be assessed throughout the course for punctuality, presentation skills, interactive approach, involvement, role-play, daily tests etc. and finally through a written examination at the end of the course. The The examination is 'closed book' and only reference material allowed in the examination is a copy of the standard ISO 27001 - 2013 .
IRCA Registered Certificate
The participants those who are interested to attend this course must have prior Knowledge for management system and principles and concepts of Information security Management.. Participants are expected to have the following prior knowledge;
a) Management systems
Understand the Plan-Do-Check-Act (PDCA) cycle
b) Information security management
c) ISO/IEC 27001
Knowledge of the requirements of ISO/IEC 27001 (with ISO/IEC 27002) and the commonly used information security management terms and definitions, as given in ISO/IEC 27000, which may be gained by completing an IRCA certified ISMS Foundation Training course or equivalent.
*Relevant proofs to be submitted
This course is not for filling gaps in the knowledge about the standard; but for enhancing the knowledge about the same with regards to audit context.
Get latest scholarships, offers & academic event alerts to your phone via SMS.
Service is available for Dialog, Mobitel, Hutch & Airtel users. Monthly (Rs. 30 + tax).