Why IQS?
IQS Certified courses are recognized as an industry leader and IQS endorsement means that you can be confident that the course you are attending:
- covers the key knowledge and skills you need to start your journey as a management systems auditor
- will be taught by tutors who are experienced auditors and trainers who have fulfilled IQS tutor competency requirements
- will be taught using a variety of proven practical student-focused learning techniques to help you learn and enjoy the course
- has a limited class size to maximize participation and optimize your learning
- has been regularly assessed by an IQS approved technical assessor.
- completion of this course is the first step to becoming IQS registered.
IQS recognize that attending a training course is usually a major commitment, both in terms of cost and time. When choosing the right training organizations and the right course, make sure you look for those that display the IQS certification mark.
IQS only approves organizations that have demonstrated a high standard of technical and training expertise. All training organizations approved by IQS must demonstrate that they have the competence to achieve the learning outcomes for each course and to examine the performance of students.
When you are choosing IQS certified Course and Training Organization you can be certain that;
- Your knowledge and skills are developed through an interactive and practical approach to tasks and audit activities.
- Courses are delivered by tutors who are experts in management systems in auditing and experienced in training.
- Students are formally assessed and examined during training.
Who will benefit?
Project Managers, Engineers, Professionals in Information Security Field, Technical Experts.
Document Controllers, Internal Auditors, and Implementation Managers in IT field.
IT Consultants, Management System / ISO / Consultants.
Students and Job seekers in Information Technology /Abroad Placements /Career Development.
Learning Objectives
2.1 Briefly describe what students will know and be able to do by the end of the course.
On completion successful students will have the knowledge and skills to:
Knowledge
2.1.1 Explain the purpose and Business benefits of information security management system, of information security management systems standards, of management system audit, of third party certification (see 3.1).
2.1.2 Explain the role of an auditor to plan, conduct, report and follow up an information security management system audit in accordance with ISO 19011 (and ISO 17021 where appropriate – (see 3.2)
Skills
2.1.3 Plan, conduct, report and follow-up an audit of an information security management system to establish conformity (or otherwise) with ISO 27001(with ISO/IEC 27002) and in accordance with ISO 19011, and ISO/IEC 17021, as applicable (see 3.3).
Course Format
Course Program
- Each day is divided into four sessions, two before lunch and two after lunch.
- The first session precedes the mid-morning break and the second follows mid-morning break.
- The afternoon sessions are similarly divided.
- The output of the exercise is a part of the formal continuous assessment and will therefore be marked.
- Although the exercises are group exercises individual score to the delegate will be based on their overall participation.
- A mock audit – Role play will be conducted on Days 4 & 5 of the Training for the delegates to demonstrate the skills learned and understood during the course. All sessions are interactive and delegate participation is encouraged.
You will need to allow sufficient time to read and understand the notes which have been provided.
Course Style
- All sessions are delegate interactive and delegate participation is encouraged. Delivery will include presentations by lecture, overhead and slide projection.
- There are numerous exercises and each activity is assessed as part of the overall candidature evaluation.
- A model factory will be used and wherever possible practical illustrations will be given. All course presenters will have experience of ISMS design and implementation, and have some experience of ISMS certification and assessment.
A live audit in a host organization (or an audit role play) will take place on day 4 so as the delegates may demonstrate the skills learned and developed during the course.
Expected Prior knowledge
Before starting this course, you must inform students that they are expected to have the following prior knowledge:
- Management systems Understand the Plan-Do-Check-Act (PDCA) cycle
- Information security management
Knowledge of the following information security management principles and concepts:
- awareness of the need for information security
- the assignment of responsibility for information security
- incorporating management commitment and the interests of stakeholders
- enhancing societal values
- using the results of risk assessments to determine appropriate controls to reach acceptable levels of risk
- incorporating security as an essential element of information networks and systems
- the active prevention and detection of information security incidents
- ensuring a comprehensive approach to information security management
- continual reassessment of information security and making of modifications as appropriate
ISO/IEC 27001
Knowledge of the requirements of ISO/IEC 27001 (with ISO/IEC 27002) and the commonly used information security management terms and definitions, as given in ISO/IEC 27000, which may be gained by completing the IQS certified ISMS Training course or equivalent.
Highlights
- Training Programs are handled by Highly Experienced and IQS Qualified Lead Auditors.
- The Batches once committed will not be cancelled
- Fully Equipped Training Halls available to carry out Multi Program at the same time.
Course Period
5 consecutive Days
Exam
There is a 2 hours close book exam on the final day (pass mark 70%)