0345 4506120

ISO 27001 Internal Auditor

Course Details

Name ISO 27001 Internal Auditor
DescriptionThis two-day training course prepares the internal auditor to effectively audit compliance with the information security standard ISO27001 and against the controls contained in ISO27002 (ISO17799).ISO27001 Internal Auditor training provides an excellent career progression and skills development opportunity for information security staff and internal auditors.There are no formal entry requirements, although it is assumed that delegates will have a working knowledge of information security management and the requirements of ISO27001.   Additional info Certificates of attendance are awarded to all delegates and this course qualifies for 16 CPE credits, or 16 hours for all professional Continuous Professional Education programs.
London - City
Start Date:
Working Days:
£949.00 +vat
Course ID:


Learn how to drive continual improvement within your organisation’s information management system (ISMS) and find out how to identify opportunities for improvement and take corrective action to maintain conformity to the ISO 27001 standard.

Designed by the team that led the world’s rst successful ISO 27001 implementation project.

A real-world auditor shows you how to tackle an ISMS audit from start to finish.

Participate in group discussions, practical exercises and case studies throughout the course.

Aligned with best-practice ISO 19011:2011 (Guidelines for auditing management systems) audit methodology.

What’s included in this course?

  • A professional training venue with lunch and refreshments;
  • Full course materials (digital copy provided as a PDF file);
  • The ISO 27001 Certified ISMS Internal Auditor exam; and
  • A certificate of attendance.

Course duration and times

Day 1: 9:30 am – 4:30 pm Day 2: 9:15 am – 5:00 pm

Learning Objectives

What does the ISO 27001 Internal Auditor course cover?

  • An overview of the structure and requirements of ISO 27001.
  • The mandatory documents for an ISO 27001-compliant ISMS.
  • The relationship between ISO 27001, ISO 19011 and ISO 27007. 
  • How an internal audit contributes to the effectiveness of an ISMS. 
  • Internal audit concepts, terms and definitions.
  • The principles of auditing conformance to ISO 27001.
  • The resources required for an internal audit. 
  • The roles, responsibilities and desired attributes of the internal auditor.
  • The different approaches to conducting an internal audit.
  • How to plan, develop and manage an effective audit programme.
  • How to plan individual internal audits.
  • How to conduct an internal audit and handle the interview process.  
  • How to identify and report evidence-based nonconformities.
  • How to take corrective action and conduct an internal audit follow-up.
  • The seven principles of a quality management system. 
  • An overview of the certification process.


What equipment should I bring?

The exam is an online exam. You will need to bring a ‘pop-up enabled’ laptop/tablet to the venue. Full details on how to access the exam will be provided by email 1–2 days before sitting the exam.

Are there any prerequisites for this course?

Before joining this course, you need to have attended the ISO 27001 Certified ISMS Foundation training course or you have a good working knowledge of ISO 27001 gained through practical experience.

Course Content

Course agenda:

  • Internal audit concepts
  • Why pursue ISO 27001 certification?
  • Structure and content of ISO 27001
  • Internal audit resource
  • The audit programme
  • Planning individual internal audits
  • Conducting audits
  • Reporting
  • Corrective action and follow up


London - Tenter House, Moorgate