Internal Auditor Training
🎯 Training Objective and Duration
This training organized by GOVISEC aims to provide internal audit competency within the framework of the ISO/IEC 27001:2022 standard. The training lasts a total of 3 days and is conducted at the company’s premises or in dedicated training classrooms.
Who Should Attend the Training?
- Employees involved in developing and implementing information technology processes
- Personnel with information security responsibilities
- IT Managers
- Internal and external auditors
- IT auditors
- IT quality specialists
- Anyone who wants to gain knowledge about ISO/IEC 27001
📚 Training Content
This training aims to develop the competencies of personnel who will take part in the annual audits of the Information Security Management System, review audit reports, and perform periodic controls. The topics covered during the training include:
- Basic definitions
- Fundamental principles of the Information Security Management System
- Management of documents and records
- Planning, management, and reporting based on different types of audits
- Practical training
- Audit planning
- Preparation of audit checklists (standard requirements and all Annex A controls)
- Audit execution
- Methods for handling issues that may arise during audits
- Evaluation of audit results
- Audit reporting and follow-up processes
📌 Auditor Examination
At the end of the training, an examination will be conducted to assess how much knowledge participants have gained regarding audit processes.