The Knowledge Academy Logo
The Knowledge Academy Logo
+61 1-800-150644 - Available 24/7

Send us your message.


ISO 27001 Internal Auditor

Key points about this course

Duration: 2 Days*

Pre-requisites: - ISO 27001 Foundation

Dates & Prices Enquire
  • Includes the courseware folder containing materials, & a completion certificate
  • ISO 27001 Internal Auditor is delivered by an experienced instructor
  • We are the world's largest provider of training courses

Available delivery methods for this course

Classroom Icon


Onsite Icon


Online Icon


Virtual Icon

Live Virtual

Course Information

ISO 27001 Internal Auditor Overview

ISO 27001 Internal Auditor training will provide delegates with the skills needed to perform internal audits within an organisation using an ISO 27001 Information Security Management System. Delegates will learn how to plan, perform, and produce reports on an audit of an ISMS. They will be introduced to a variety of techniques that will allow them to carry out such audits effectively from start to finish, for the purpose of enhancing output. Therefore, completing this ISO 27001 training course will greatly boost auditing abilities, which will result in the better implementation of security principles and strategies.


ISO 27001 is all about Information Security Management. The protection of potentially confidential or sensitive data is vital to the success of an enterprise, hence ISO 27001 is designed to diminish the likelihood of data breaches. ISO, (the International Organisation for Standardisation), produces documents that determine specifications, requirements, and guidance to ensure that services, products, and procedures are delivered to the appropriate standard, and achieve their primary objective, thus complying to ISO 27001 is significant.


This ISO 27001 Internal Auditor course is the second phase of a four-stage training process, which enables individuals to become ISO 27001 specialists. Prior to this course, delegates should have completed the ISO 27001 Foundation course. Following this Internal Auditor course, delegates willing to progress further should explore our ISO 27001 Lead Auditor and ISO 27001 Lead Implementer training courses. These specific Auditor and Implementer courses enable delegates to become proficient in the auditing and implementation of information security.  

ISO 27001 Internal Auditor Outline

This ISO training course will cover the following modules:

Module 1: Introduction to ISMS

  • 27001 Refresher
  • What is an ISMS?
  • ISMS Benefits
  • Scope of ISMS
  • ISMS within an Organisation
  • ISMS Principles

Module 2: Introduction to Auditing

  • Defining Auditing
  • Types of Auditing
  • Techniques and Principles
  • Phases of Audit
  • Audit Work Papers

Module 3: ISO 27001 Audit Plan and Launch

  • Internal Auditing Goals
  • Internal Auditing Charter
  • Audit Components
  • Purpose and Extent of an Audit
  • Confirming Audit Plans
  • Documentation
  • 27001 Standard Interpretation

Module 4: Performing ISO 27001 Audit

  • Preparing Audit Reports
  • Analysing Data
  • Using Various Sources to Collect Information
  • Auditing Procedures
  • Reviewing Documents and Reports
  • Validating Reports
  • Designing and Merging Findings
  • Classifying Findings
  • Planning, Organising, and Prioritising
  • Factors that Impact the Reliability of Audit Findings

Module 5: Internal Auditor within Organisations

  • Roles and Responsibilities of an Internal Auditor
  • Record Review Activities
  • Internal Auditor Checklist
  • Communication between Departments
  • Confidentiality and Security of Information on ISMS
  • Drafting Reports and Test Plans

Module 6: Interaction with ISO 27005

  • What is ISO 27005?
  • ISO 27001 vs ISO 27005
  • Quantifying the Business Impact
  • Impact Severity
  • Risk Treatment Plan

Module 7: Risk Management

  • Risk Identification and Assessment
  • Analysing and Evaluating Risks
  • Managing Risk Approaches
  • Controls and Objectives
  • Implementing Controls
  • Statement of Applicability 

Who should attend?

This training course is intended for those in the following positions:

  • Information Security Managers

  • Information Security Consultants

  • Information Security Teams

  • Internal Auditors


Essentially, anyone involved in carrying out internal audits of an Information Security Management Systems.



In order to attend this training course, delegates should possess foundation knowledge of ISO 27001. If individuals do not currently have this, they can attend our ISO 27001 Foundation course.

ISO 27001 is all about Information Security Management. ISO 27001 provides a framework that enables organisations to enhance the protection of information assets. Businesses that comply to the ISO 27001 standard display commitment to the improvement of control over their private information.
Yes, The Knowledge Academy’s ISO 27001 Internal Auditor exam is included with the course fee, and will be taken at the end of the day.
ISO 27001 Internal Auditor is a 2 day training course.
This ISO 27001 Internal Auditor training course begins at 9am and finishes around 5pm. You should arrive at the venue by 8:45am.
In order to attend this training course, delegates should possess foundation knowledge of ISO 27001. If they do not already have this, they can attend The Knowledge Academy’s ISO 27001 Foundation training course beforehand.
We provide ISO 27001 Foundation, ISO 27001 Lead Auditor, and ISO 27001 Lead Implementer.
As well as ISO 27001 courses, The Knowledge Academy offers training in ISO 9001, ISO 2000, ISO 14001, ISO OHSAS 18001, ISO 22301, ISO 27005, and ISO 13485.
The Knowledge Academy provides ISO 27001 training throughout the UK and all over the globe, so there will be a location near you.

ISO 27001 Internal Auditor Examination

Delegates will need to sit an exam at the end of the 2 day ISO 27001 Internal Auditor training course. This exam is included in the course fee, and is formatted like so:

  • 30 questions

  • Multiple choice

  • 40 minutes

  • 50% pass mark (15 correct answers)

  • Closed book


Included in the course:

  • The ISO 27001 Internal Auditor Examination

  • The Knowledge Academy ISO 27001 Internal Auditor Manual 

  • Certificate

  • Experienced Instructor 

  • Refreshments 

Dates & Prices

Select your preferred delivery method

Choose a Region

Choose a Location

Choose a Month

Office Icon Attend your course from the office or home
Trainers Icon Interactive support from experienced trainers
Simple Icon Simple to setup and easy to use on any device

Complete the steps below to receive a quote or more information

How will you be funding your training?

Self funding

Company funding

Not sure

Key points about this course

Duration: 2 Days*

Pre-requisites: - ISO 27001 Foundation

Why choose TKA logo

Gold Tag

Best price in the industry

You won't find better value in the marketplace. If you do find a lower price, we will beat it.

Delivery Icon

Various delivery methods

Flexible delivery methods are available depending on your learning style.

Resource Icon


Resources are included for a comprehensive learning experience.

Thames Water Logo

"Really good course and well organised. Trainer was great with a sense of humour - his experience allowed a free flowing course, structured to help you gain as much information & relevant experience whilst helping prepare you for the exam"

Joshua Davies, Thames Water

Google Logo
Samsung Logo
Shell Logo

"...the trainer for this course was excellent. I would definitely recommend (and already have) this course to others."

Diane Gray, Shell

  Looking for more information?