Overview
Advance your information security career by mastering ISMS auditing to ISO/IEC 27001:2022
Syllabus
-
- Introduction to ISO/IEC 27001
-- Overview of Information Security Management Systems (ISMS)
-- Importance of ISO/IEC 27001:2022 for organizations
- Understanding the ISO/IEC 27001:2022 Standard
-- Structure and Clauses of ISO/IEC 27001:2022
-- Key changes from previous versions
-- Annex A Controls
- Fundamentals of Information Security Management Systems (ISMS)
-- Objectives and benefits of ISMS
-- Key concepts and principles
-- Role in organizational risk management
- Preparing for ISO/IEC 27001 Audit
-- Planning the audit
-- Defining audit objectives, scope, and criteria
-- Creating an audit plan
- Audit Process
-- Conducting document review
-- Interview techniques
-- Audit testing and evidence-gathering methods
- Audit Roles and Responsibilities
-- Roles of Lead Auditor, Auditors, and Auditee
-- Team selection and management
-- Conducting opening and closing meetings
- Nonconformity Identification and Reporting
-- Identifying and classifying nonconformities
-- Writing effective nonconformity statements
-- Preparing audit reports
- Corrective Action and Follow-up
-- Corrective action planning and verification
-- Follow-up audit activities
- Continuous Improvement of ISMS
-- PDCA cycle (Plan-Do-Check-Act)
-- Driving continual improvement in ISMS
- Certification Process
-- Steps to achieve ISO/IEC 27001 certification
-- Maintaining and renewing certification
- Case Studies and Practical Exercises
-- Real-world ISMS audit scenarios
-- Practice audit exercises
- Final Assessment and Certification
-- Knowledge checks and quizzes
-- Lead Auditor certification exam
- Conclusion and Career Advancement
-- Review of key learning points
-- Career insights and opportunities in information security
Taught by
Cristian Vlad Lupa, rigcert.education
Tags