| Approx Course Duration *: | Equivalent to 24 Hours (3 days full-time study) |
| Access to Course Content: | 18 Months from the date of enrolment |
| Qualification/s: | Internal Auditor Information Security Management Systems |
| Competency Units: |
Exemplar Global (AU) Management Systems Auditing
Exemplar Global (ISMS) Information Security Management Systems |
| Certificate Type: |
Certificate of Attainment - TPECS |
| CPD Hours: | 24 Continuing Professional Development Hours |
Gain the Skills to Conduct Internal ISO 27001 Audits
Master Information Security Auditing with Confidence & Credibility
Every organisation certified to ISO 27001 needs a strong internal audit program to maintain compliance and identify risks before they become security breaches. This fully online, self-paced course is designed for audit team members who want to conduct internal audits against ISO 27001 requirements.
If you work in information security, compliance, or risk management and need to assess your organisation’s ISMS, this course will equip you with the practical skills to conduct effective internal audits and support ongoing security improvements.
Why This Course?
Organisations need skilled internal auditors to help maintain ISO 27001 compliance and proactively manage information security risks. This course provides practical, audit-ready skills that can be applied immediately.
It is specifically designed for audit team members—not for those leading external audits. If you want to become a Lead Auditor, check out our ISO 27001 Lead Auditor course.
Who Should Enrol?
- Internal Auditors & Compliance Officers involved in security audits.
- Risk & Security Professionals ensuring ISMS effectiveness.
- IT & Cybersecurity Experts conducting internal assessments.
- Anyone responsible for maintaining ISO 27001 certification requirements.
If you need to support ISO 27001 audits within your organisation, this course is for you.
What You Will Learn
- ✅ ISO 27001:2022 Internal Audit Principles & methodologies.
- ✅ How to Conduct Internal Audits of an ISMS
- ✅ Identifying Nonconformities & Risks in information security.
- ✅ Audit Reporting & Corrective Actions for compliance improvement.
- ✅ How to Support Continuous Improvement within an ISMS.
Course Outcomes
- Gain an Internal Auditor qualification in ISO 27001.
- Develop the skills to assess ISMS compliance within an organisation.
- Learn how to identify & report nonconformities effectively.
- Contribute to ISO 27001 internal audit programs with confidence.
Key Features
- Delivered by seasoned industry experts with real-world auditing experience
- Blended learning approach with interactive sessions and case studies
- Qualification-aligned content — prepares you fully for ISO 27001 Lead Auditor exam
- Access to exclusive auditing templates, tools, and frameworks
Why It Matters
A strong internal audit function is essential for ISO 27001 compliance. By developing internal audit skills, you help ensure ongoing security, compliance, and continuous improvement in your organisation’s information security management system.
By becoming an ISO 27001 Auditor, you’re not just upskilling — you’re future-proofing your career.
This internationally recognised course is delivered 100% online, allowing you to study at your own pace. It consists of multiple modules structured across key learning units. To receive your qualification, all modules must be completed in full.
Modules included;
- Introduction to Management Systems Auditing
- Managing an Audit Programme
- The Auditor
- Audit Procedures
- Initiating the Audit
- Conducting the Document Review
- Prepare for Audit Activities
- Conducting Audit Activities
- Prepare the Audit Report
- Completing the Audit and Conducting Follow-ups
- Introduction to ISO 27001:2022 incl Clauses 1-3
- ISO 27001:2022 Clause 4 Context of the organization
- ISO 27001:2022 Clause 5 Leadership
- ISO 27001:2022 Clause 6 Planning
- ISO 27001:2022 Clause 7 Support
- ISO 27001:2022 Clause 8 Operation
- ISO 27001:2022 Clause 9 Performance evaluation
- ISO 27001:2022 Clause 10 Improvement
*This course does not include a full copy of related ISO standards, as they are not required to complete your training. However, your course content does include relevant extracts from these
ATOL courses are structured into topic- and clause-specific modules, each designed to progressively build your knowledge.
No one likes a single high-stakes exam at the end, so we’ve designed our courses differently. Each module includes a targeted assessment to reinforce learning as you go—helping you develop and confirm the knowledge and skills needed for real-world application.
All ATOL assessments are competency-based and aligned with Exemplar Global TPECS performance and evidence criteria, ensuring they meet industry standards.
- Knowledge Checks – Short self-assessments at the end of each module to reinforce learning, highlight areas for review, and provide targeted feedback where needed.
- Formal Assessments – Designed to evaluate competency through real-world application, focusing on the skills and knowledge required for auditing and management systems.
- Trainer Support – Learning online doesn’t mean learning alone. Our trainers are available to provide guidance and feedback to help you succeed.
This structured approach ensures you gain both confidence and practical expertise as you work towards your qualification.
Course details:
-
Online Self-Paced
-
Approx 24 hours full-time study*
-
Exemplar Global International & Industry Recognized
-
Standard: ISO 19001:2018 and ISO 27001:2022
-
No prerequisites required
* All ATOL courses are delivered in such a way you can work through them at your own pace, the actual time to complete the training may change depending on the individual learners' experience and/or learning style
NO PREREQUISITES