ISO/IEC 27001 Auditor Self-Paced Online Course & Examination

The ISO/IEC 27001 Auditor certification demonstrates knowledge of how to audit organisations to identify conformity with ISO 27001, how to evaluate the principles of risk management and how to propose appropriate treatments and controls to reduce information security risk. Candidates who obtain this certification have knowledge of how to lead organisations through an audit program, direct audit teams in relation to the guidance given in ISO 19011 and how to evaluate the effectiveness of applied corrective actions to maintain ISMS conformity with ISO 27001.  

Our self-paced online ISO/IEC 27001 Auditor course prepares you for the exam leading to the ISO/IEC 27001 Auditor Certification.

With your Self-Paced Online Course, you receive:

• Access to 13 lessons of our ISO/IEC 27001 Foundation course (4 hours of instructor-led video content)
• 24/7 availability for 12-months
• Downloadable PDF documents with detailed content (slides, explanations) for each lesson
• Exercises and solutions 
• Official SO/IEC 27001 Foundation online exam voucher from APMG, the global examination provider
• Instructor assistance is available via email 

Course Overview

ISO/IEC 27001 (ISO 27001) is an international standard for Information Security management. It provides a model to establish, implement, maintain and continually improve a risk-managed Information Security Management System (ISMS). 

The standard forms the basis for effective management of sensitive, confidential information and for the application of information security controls. 

An organisation that conforms to the ISO/IEC 27001 standard possesses clear, objective proof of its commitment to continued improvement of control over its sensitive and confidential information. ISO/IEC 27001 therefore provides reassurance to sponsors, shareholders and customers that the organisation has expert control over its risk management and data security.

Due to the diversity of different organisation’s information assets – the ISO/IEC 27001 standard is adaptable according to an organisation’s requirements. The design and implementation of the ISMS is tailored to the organisation’s objectives, information assets, operational processes, governing legal requirements and regulatory security requirements. 

Certify your expertise in performing audits against the ISO 27001 standard. Content of the course includes:

• Introduction, background and defined terms
• Audit management types and activities 
• Introduction to evidence 
• Evidence of leadership & support of the ISMS 
• Evidence of planning & operation of the ISMS 
• Introduction to controls 
• Organisational controls 
• People controls 
• Physical controls
• Technological controls.

Learning Outcomes

At the end of the course, provided the exam is successful, the examinee will know:

• How to audit organisations to identify conformity with ISO 27001.
• How to evaluate the principles of risk management - including risk identification, analysis and evaluation. 
• How to propose appropriate treatments and controls to reduce information security risk, support business objectives and improve information security. 
• Leading organisations through an audit program. 
• Directing audit teams. 
• Evaluating the effectiveness of applied corrective actions to maintain ISMS conformity with ISO 27001. 

Who should attend

The ISO/IEC 27001 Auditor course is aimed professionals who are:

• Third-party auditors working for Certification Bodies, responsible for conducting audits which certify organisations against ISO 27001 and ISO 19011.
• Internal auditors seeking to understand the specific requirements of auditing Information Security Management Systems needed to confirm that an organisation conforms to the ISO 27001 or ISO 19011 standard. 

Pre-requisites

It is recommended (not mandatory) that candidates hold ISO/IEC 27001 Foundation certification.

Exam & Certification

This course prepares participants for the examination leading to the ISO/IEC 27001 Auditor certificate, granted by APMG International: 

• 40 questions
• Multiple choice format
• 120 minute duration
• 20 marks or more required to pass (out of 40 available) - 50%
• Open book: ISO/IEC 27001:2013, ISO/IEC 27002:2013, ISO 19011:2018, APMG ISO/IEC 27001 Supplementary Paper 

Course Material & Inclusions

Access to your own online learning portal for 12-months to work through the course materials and prepare for the examination. 

ISO/IEC 27001 Auditor online exam voucher, this is issued from APMG International (global examination body) on the same day your course access is activated. The schedule is available 24/7 so you can book and register for your exam at a time that suits. A webcam and internet connection is required. 

A digital badge you can share with your network will be provided via email upon passing your certification exam with APMG