ISO 27001 is one of the most popular information security standards in the world, with the number of certifications growing every year. The standard provides a framework for the management of information security risks and enables organizations to take into account their legal and regulatory requirements. This can help to reduce likelihood of facing prosecution and fines while also gain status as preferred supplier.
Our ISO 27001 Lead Auditor and Lead Implementer Training is designed to enhance your knowledge on how to implement and audit a compliance program with focus on Information Security Management System, using EY’s industry and solution knowledge and practical examples.
Through a combination of tutorials, group exercises and role-playing using EY’s industry knowledge and practical examples, you will learn everything you need to know about how to be a leading auditor and implementer of Information Security Management Systems.
Key objectives of the training
- Understand how to identify and address the risks associated with your organization
- Understand how to effectively design and implement information security policies and processes
- Learn to plan and execute an audit to verify conformity with the ISO/IEC 27001:2013 standard
- Develop auditing skills and boost information security management knowledge
The participants will get the opportunity to develop skills in the following:
- Gaining essential knowledge about auditing according to ISO/IEC 27001:2013
- Identifying risks and focus areas for the information security management system
- Practical insights on how to audit specific ISO/IEC 27001:2013 requirements
- Gaining auditing skills to help improve auditing capabilities
- Practicing of end-to-end audit execution (including preparation, planning, identifying of nonconformities, reporting and review of corrective actions)
- Becoming a certified Lead Auditor and Lead Implementer for Information Security Management Systems
Source:
https://www.ey.com/en_gl/consulting/certify-point/iso-iec-27001-2013
