RABQSA Certified Competency Based Internal Auditing For Information Security Management Systems Using ISO 27001:2005

Course 4504 - 3 Days - 2.1 CEUs

$1495 USD
$1345 USD with 30-Day Prepay Savings
$747 USD for Third Attendee
$672 USD for Third Attendee with 30-Day Prepay Savings
Save 10% to 30% in our Customer Rewards Program


Key Session Topics

• Understanding Management System Certification
• Auditing ISO/IEC 27001:2005 requirements
• Auditing the ISMS Framework
• Auditing risk assessments
• Auditing Controls
• Coordinating an effective audit program
• Developing effective auditing techniques
• Practicing auditing skills in interactive workshops
• Identifying key activities for performing a successful audit
• Evaluating the significance of audit findings
• Confidentiality considerations in reporting audit findings
• Improving communication skills for the presentation of audit findings
• Reporting the findings and evaluations
• Developing and implementing corrective action programs
• Auditing continual improvement programs

Dates, Locations, and Registration  

How to Register

You can register for a course in either of two easy ways:

• Call us at (800)374-3818.
• Click on a date in the table below and complete the online registration form.

Register online or call 800-374-3818.

8/27/2008 - 8/29/2008 Southbury, CT Crowne Plaza Hotel Southbury

If you have questions about this course, submit a Course Information Request or call us at 1-800-374-3818. To learn about the savings and instructional benefits of training five or more participants at your location, submit an On-Site Quote Request or call us at 1-800-374-3818. To learn how you can save 10% - 30% on course registrations with SAI Global as your preferred training provider, submit a Customer Rewards Request or call us at 1-800-374-3818.

Course Objectives
This course offers a completely new approach to information security management systems internal auditor training. The training is focused on attendee attainment of two sets of defined competencies: information security management systems and auditing skills.

This 3-day course provides attendees with the skills needed to perform effective internal audits against the ISO/IEC 27001:2005 Information Security Management Systems standard. Covering the requirements of ISO 27001:2005 and its companion implementation standard, ISO 27002, the course will show internal auditors how to maintain the availability, integrity, continuity and security of your organization’s information.

Attendees will learn how to use an internal audit program to monitor and improve their organization’s Information Security Management System, and develop the skills needed to conduct effective ISMS audits. Upon completion of this course attendees will be able to plan, schedule, document, and record audits needed to maintain their ISMS effectiveness, and demonstrate compliance to ISO 27001:2005 requirements.

Interactive workshops, simulated audits, tutorials and case studies, are used to develop practical audit skills, improve your evaluation and communication skills, refine your reporting skills and increase your ability to implement corrective action programs.

Competency-based exercises are conducted throughout the course and a final written examination is undertaken on the last day of training. Audit processes and procedures are substantially the same as those of Guidelines for Quality and/or Environmental Management Systems Auditing (ISO 19011:2002) standard, modified in some respects for the unique needs of the information security environment.

A fourth day audit lab is recommended to apply learned theories to a practical environment (on-site sessions only).

Who Should Attend

• Individuals who want to become an RABQSA Certified Provisional Auditor
• Information Technology Professionals
• Information Security Professionals (CISA/CISSP)
• Management representatives
• Anyone who will perform an internal audit to ISO/IEC 27001:2005
• Individuals responsible for helping their company attain or retain ISO/IEC 27001:2005 registration
• Management personnel seeking to get more value out of their internal audit system
• Information Security Officers, Management representatives, Quality Managers, IT professionals, and Consultants

Prerequisites
Prior to attending this course, students are recommended to have at least a basic knowledge of Business Management Systems, with some knowledge of the current published version of ISO 9001 being an advantage.

Certification
This course is certified by RABQSA International and fully meets the requirements of the ‘RABQSA Training Provider Examination Certification Scheme’ (TPECS). The RABQSA scheme is accredited to the International Standard ISO/IEC 17024:2003 ‘General Requirements for bodies operating the certification of persons’. Attendees who successfully complete this ISMS course will receive a Certificate of Attainment for successfully completing the following knowledge competency units:

• RABQSA - IS – Information Security Management Systems
• RABQSA - AU – Management systems auditing

While there is no bi-lateral agreement with IRCA (International Register of Certified Auditors), this course should adequately meet the criteria stated in their auditor certification scheme covered by the term “IRCA approved ISMS Internal Auditor Training or acceptable equivalent”.

THE ROUTE TO BECOMING AN RABQSA CERTIFIED AUDITOR:
Students who are deemed “competent” in all required workshops, examinations and other competency-based examinations in the above units will receive Certificates of Attainment to demonstrate that they have met the knowledge competencies for RABQSA-IS and RABQSA-AU. SAI Global will recommend successful graduates to RABQSA for Provisional Auditor Certification under the Competency Based Personnel Certification Scheme (ISO 17024:2003). Graduates seeking a certification grade beyond Provisional Auditor must apply directly to RABQSA and demonstrate the additional skills, personal attributes and qualification competencies required for the grade sought.

Please click here to visit the RABSQA Web site for further details about the RABQSA auditor certification process.


What's Included in the Price
The course price includes:

• breakfast, lunch, and refreshments each course day -- special dietary needs are no problem
• a student manual developed by experienced instructional designers
• a copy of the standard (where applicable)
• forms, templates, and worksheets for use back at the workplace (for auditing and other applicable courses)
• certificates upon completion of course requirements

Hotels:
Although hotel reservations and accommodations are not included in the course price, we do secure discounted room rates for most of our courses.

Training at Your Location:
Please contact us at 1-800-374-3818 for information about on-site pricing.


Support from Registration through Certificate of Completion
At every step of the public course process, the SAI Global Customer Relations team is singularly committed to providing an unparalleled level of support so you can focus on the learning event instead of on preparations and logistics.

1. Once you register for a course by phone, by fax, or online, we send you a registration confirmation e-mail.
2. Approximately 3 weeks prior to the course, or if you register closer to the start date, we mail and/or e-mail you precourse materials, if applicable.
3. If any changes to course/hotel location occur, we contact you immediately.
4. Approximately 2 weeks prior to the course start date, we e-mail you a course reminder to confirm your attendance.
5. For the course itself, we provide everything you need to facilitate your learning experience.
6. At the conclusion of the course, the instructor submits test scores (where applicable) and other necessary paperwork to the home office for processing.
7. You receive a certificate of completion and confirmation of continuing education units (CEUs) earned.