Upload
others
View
3
Download
0
Embed Size (px)
Citation preview
Course Description A lead auditor is the one who is responsible for leading the audit team in an
organization. He or she prepares the audit plan, delivers meetings and
submits audit report at the end of quarter or year. Conducting audits is the
main responsibility of a lead auditor and that needs to be done on a daily basis
Auditing is crucial to the success of any management system. As a result, it carries
with it heavy responsibilities, tough challenges and complex problems. This five
day intensive course prepares the participants for the qualification process for ISO
27001. It also allows them to give practical help and information to those who are
working towards compliance and certification.
Call Us- +91-9650202445 | +91-9650677445 CRAW Security
COURSE CONTENTS MODULE 01 : Introduction of ISO 27001 LA Training Course
• Introduction
• Auditor Certification
• World-Wide Recognition of Auditor Qualifications
• Reference Standards and Documents
• Learning Objectives
• Continues Assessment
• Examination
• IRCA Code of Conduct
MODULE 02 : Introduction of Information Security Management Systems and
Standards Development
• Definition and importance of Information in ISMS
• CIA and DAD Triads
• Additional Goals
• ISMS Purpose and Objectives
ISMS purpose and business benefits
Benefits of Certification
• Hands-on Exercises and discussion
• Legal and Regulatory compliance
Legal and Regulatory Framework
Conformance Vs Compliance
MODULE 03 : Requirements of ISO 27001
• Quick Content Comparaison ISO 27001vs ISO 27001
Contents of ISO 27001
Process approach and processes involved in establishing
Implementing & operation
Monitoring & reviewing
Maintaining and improving the ISMS
• ISMS scope, boundaries of ISMS and permissible exclusions.
• ISMS Scope and exclusions
• Hands-on exercises and discussion
MODULE 04 : Requirements of ISO 27001 (Continued)
• ISMS Clauses
ISO 27001 clauses
Information Security Policy
Internal Audits, Management Reviews, Improvement.
Hands-on exercises and discussion
• Policy and Objectives
• Asset Register
• Risk Assessment and Risk Treatment.
• Risk Assessment examination and Evaluation.
• Hands-on exercises and discussion
• Annex A Controls and ISO 27002
Annex A Controls
SoA
Incident Management and Business Continuity.
• Introduction to SoA Examination and Evaluation.
• Hands-on exercises and discussion
MODULE 05 : Audit Planning and Preparation
• Reasons for auditing
• Audit principles
• Process of audit program management
• Audit competence and evaluation methods
• Audit Responsibilities
Audit time
Audit Process Flow
Audit Plans and Programs
Initial Document Review
MODULE 06 : Audit Planning and Preparation (Continued)
Hands-on exercises and discussion
Audit Activities
Preparation
Audit plan
ISMS Audit Check lists
Audit Check Lists
MODULE 07 : Process Audit Techniques and Collecting evidence
• Process auditing, Auditor qualities and selection.
• Audit Script
• Audit stages
• Audit techniques
• Collecting evidence through questions
• Observation, checking, note taking, and collecting evidence
• Hands-on exercises and discussion
MODULE 08 : Process Audit Techniques and Collecting evidence (continued)
• Audit techniques and collecting evidence through questions, observation, checking, note
taking and collecting evidence.
• Introduction to audit role playing
• Reporting the Audit Findings
Audit team meeting
Nonconformities and observation
Corrective and preventive actions
• Hands-on exercises and discussion
MODULE 09 : Conclusion
• NCR Judgment and Reporting
• Reporting the Audit Findings
Corrective actions and follow up
• Review of the course
Learning Objectives
Key learning points of the course
Delegate feedback
Review of specimen examination
Final questions and answers
• Hands-on exercises and discussion
Target to Audience Individuals
School Students
College Students
IT Professionals
IT Officers
IT and LAW
Officers
Corporates
IT Training Firms
IT Consultants
IT Experts
IT Officers
IT Institutions & Colleges
IT Graduated or Computer Science Students
Call Us- +91-9650202445 | +91-9650677445 CRAW Security
Governance Security Agencies | Security Groups | Govt. IT Institutions | IT Govt. & Security Officers.
What we try to Give
We try to give you real industry standards with best possible quality to all our
customers and clients. We focus on Various sections of Society and running a national
level campaign to literate Students from all parts of company who can’t Afford “Basic
IT Computer Training”. We wish we could teach as many students from all over the
world and make it a beautiful place to work. We work on minimum gross margins to
strength the Indian It infrastructure.
Online Training
Call Us- +91-9650202445 | +91-9650677445 CRAW Security
Classroom Training Virtual Lab
Contact Us CRAW SECURITY
1st Floor, Plot no. 4, Lane no. 2,Kehar Singh Estate,
Westend Marg, Behind Saket Metro Station,
New Delhi – 110030
Call Us
011-40394315 | +91-9650202445 | +91-9650677445
Mails Us [email protected]
Visit Us
www.crawsecurity.com | www.craw.in