Section 6: Fundamental audit concepts and principles

• Audit standards
• What is an audit?
• Types of audits
• Involved parties
• Audit objectives and criteria
• Combined audit
• Principles of auditing
• Competence and evaluation of auditors 

Section 7: The impact of trends and technology in auditing

• Big data
• The three V’s of big data
• The use of big data in audits
• Artificial intelligence
• Machine learning
• Cloud computing
• Auditing outsourced operations 

Section 8: Evidence-based auditing

• Audit evidence
• Types of audit evidence
• Quality and reliability of audit evidence

Section 9: Risk-based auditing

• Audit approach based on risk
• Materiality and audit planning
• Reasonable assurance

Section 10: Initiation of the audit process

• The audit offer
• The audit team leader
• The audit team
• Audit feasibility
• Audit acceptance
• Establishing contact with the auditee
• The audit schedule

Section 11: Stage 1 audit

• Objectives of the stage 1 audit
• Pre on-site activities
• Preparing for on-site activities
• Conducting on-site activities
• Documenting the outputs of stage 1 audit 

Section 12: Preparing for stage 2 audit

• Setting the audit objectives
• Planning the audit
• Assigning work to the audit team
• Preparing audit test plans
• Preparing documented information for the audit

Section 13: Stage 2 audit

• Conducting the opening meeting
• Collecting information
• Conducting audit tests
• Determining audit findings and nonconformity reports
• Performing a quality review

Section 14: Communication during the audit

• Behavior during on-site visits
• Communication during the audit
• Audit team meetings
• Guides and observers
• Conflict management
• Cultural aspects
• Communication with the top management

Section 15: Audit procedures

• Overview of the audit process
• Evidence collection and analysis procedures
• Interview
• Documented information review
• Observation
• Analysis
• Sampling
• Technical verification

Section 16: Creating audit test plans

• Audit test plans
• Examples of audit test plans
• Guidance for auditing an ISMS
• Corroboration
• Evaluation
• Auditing virtual activities and locations 

Section 17: Drafting audit findings and nonconformity reports

• Audit findings
• Types of possible audit findings
• Documenting the audit findings
• Drafting a nonconformity report
• The principle of the benefit of the doubt

Section 18: Audit documentation and quality review

• Work documents
• Quality review

Section 19: Closing of the audit

• Determining audit conclusions
• Discussing audit conclusions
• Closing meeting
• Preparing audit report
• Distributing the audit report
• Making the certification decision
• Closing the audit

Section 20: Evaluation of action plans by the auditor

• Submission of action plans by the auditee
• Content of action plans
• Evaluation of action plans

Section 21: Beyond the initial audit

• Audit follow-up activities
• Surveillance activities
• Recertification audit
• Use of trademarks

Section 22: Managing an internal audit program

• Managing an audit program
• Role of the internal audit function
• Main internal audit services and activities
• Audit program resources
• Audit program records
• Follow up on nonconformities
• Monitoring, evaluating, reviewing, and improving an audit program

8hrs dedicated session

ISO 27001 Practical Approach

• ISO 27001 (new 93 controls) Controls to Evidence Mapping
• Practical approach on how to collect evidence while auditing with three scenarios/ case studies paragraphs

 ISO 27001 Exam Prep

• Revision of course and open mic session for doubts
• Exam Prep – mock exam
• Discussion on exam questions and answers
• Discussion on different exams (TUV/IGC/PECB)