Audit of the information security management system according to the standards of the ISO2700x series

Duration

40 hours (online | offline)

Language

English / Ukrainian / Russian

Audience
Students / PhD students, engineers, teachers, researchers and professionals in cybersecurity, information security, telecommunications, information technologies, as well as CTO, CIO and CRO.
Description

The course is devoted to studying the features of conducting information security management system audits using the Iso2700x standard. The course consists of 4 parts: Introduction to Information Security Management System (ISMS) and ISO/IEC 27001; Audit principles, preparation and start of the audit; Audit activity on site; Closing the audit. As part of the first part, the course participants will get acquainted with the Objectives and structure of the training course, the Standards and the regulatory framework, the certification process, the fundamental concepts and principles of information security and the information security management system according to ISO standards. During the second part of the course, students will master the basic concepts and principles of auditing, understand the impact of trends and technologies on auditing, become familiar with risk-based and evidence-based auditing, learn about the audit process and the first stage of the audit. During the third part of the course, information will be provided on the preparation for the second stage audit, communication during the audit, audit procedures and the creation of audit plans. The concluding part will cover audit conclusions and non-compliance reporting, audit closure issues, auditor evaluation of action plans, and ISO 2700x certifications.

Trainer

Ivan Opirskyy
Doctor of Sciences in Cybersecurity, Professor of the Information Security Department,
Lviv Polytechnic National University, Lviv, Ukraine

EnglishUkraine
Scroll to Top