PL EN
PL EN
787 974 136
731 901 601
Training programme Benefits Testimonials
DJB Doradztwo Dedicated training ISO 27001:2023 Internal Auditor Training

ISO 27001:2023 Internal Auditor Training

Dedicated training – a bespoke course tailored to your company’s needs

Training objective: To gain knowledge of conducting internal audits of the ISO 27001:2023 information security management system. To obtain the authorisation to conduct internal audits and second-party audits (e.g. audits carried out at suppliers’ premises).

For whom: This training course is aimed at organisations wishing to train their staff to act as Internal Auditors for the ISO 27001:2023 information security management system.

Over the past 25 years, more than 5,000 small, medium and large companies have placed their trust in us:

xerox brother good-mills promedica 24 stalesia norvacc holidayin eisberg univar hanarol mwv lot parp minimax
Fill out the form or call us
787 974 136 731 901 601
Bezpieczne dane

Your data is safe with us.
We care about your privacy.

Training Programme

I. INTRODUCTION

  1. An introduction for training participants to topics related to the audit process in accordance with the guidelines of ISO 19011:2018. An explanation of what an internal audit is, and a discussion of the types of audit.
  2. Discussion of terms and definitions related to internal audits as specified in ISO 19011:2018.
  3. Description of the roles and responsibilities of the audit team and those supporting the audit team:
    • lead auditor,
    • internal auditor,
    • observer,
    • technical expert.
  4. Presentation and explanation to training participants of the guidelines in ISO 19011:2018 regarding the competence and assessment of management system auditors and audit teams.
  5. Presentation and explanation of the new auditing principles to training participants. Interpretation of the risk-based approach in the audit process in accordance with the guidelines of ISO 19011:2018.

II. INITIATING THE AUDIT AND PREPARING AUDIT ACTIVITIES IN ACCORDANCE WITH THE GUIDELINES OF ISO 19011:2018

  1. Familiarising training participants with the stages of an internal audit.
  2. Presentation of the key elements of an audit:
    • resources,
    • purpose,
    • frequency,
    • scope,
    • criteria.
  3. Extended ISO 19011:2018 guidelines on developing an audit programme:
    • discussion of risk analysis in audit programme management,
    • discussion of responsibilities and authorities related to developing an audit programme,
    • presentation of the principles for developing an audit programme,
    • discussion of the elements of an audit programme,
    • presentation of sample audit programmes.
  4. Drawing up an audit plan:
    • presentation of the principles for drawing up an audit plan,
    • discussion of the components of an audit plan,
    • presentation of sample audit plans.
  5. Creating checklists:
    • presentation of types of checklists – advantages and disadvantages of using different types of checklists,
    • presentation of methods for creating checklists,
    • presentation of examples of checklists.

EXERCISES: Completion of 3 exercises designed to teach participants how to prepare for an audit by learning to select audit criteria and create checklists

BREAK

III. CONDUCTING AUDIT ACTIVITIES IN ACCORDANCE WITH ISO 19011:2018 GUIDELINES

  1. Discussion of the purpose of the opening meeting:
    • elements of the opening meeting,
    • persons participating in the opening meeting,
    • duration of the opening meeting.
  2. Presentation of the principles of conducting an internal audit.
  3. Discussion of communication during the audit between the auditor and the auditee:
    • appropriate and inappropriate behaviour of the auditor and the auditee during the audit.
  4. Presentation of audit techniques:
    • methods of gathering information during the audit,
    • conducting audit interviews, formulating questions and using checklists during the audit,
    • reviewing documents and records during the audit,
    • observation during the audit.
  5. Characteristics of types of non-conformities:
    • a discussion of when a non-conformity should be identified and when an observation should be noted.
    • methods of communicating information about a non-conformity or observation to the auditee.
  6. Presentation of sample audit situations applying audit principles.
  7. Discussion of the purpose of the closing meeting:
    • elements of the closing meeting,
    • persons attending the closing meeting,
    • duration of the closing meeting.

EXERCISES: Completion of 3 exercises designed to teach the auditee how to apply audit principles.

IV. PREPARATION OF THE AUDIT REPORT, CONCLUSION OF THE AUDIT, POST-AUDIT ACTIVITIES IN ACCORDANCE WITH ISO 19011:2018 GUIDELINES 

  1. Discussion of documents and records resulting from the audit:
    • elements of the audit report,
    • elements of the non-conformity record.
  2. Discussion of how to report non-conformities and observations:
    • how to prepare an audit report and a non-conformity record,
    • how to formulate conclusions in the audit report and non-conformity record,
    • presentation of a sample audit report,
    • presentation of sample non-conformity records,
    • submission of the audit report and non-conformity records.
  3. Discussion of post-audit activities.

EXERCISES: Completion of 1 exercise during which training participants will learn to prepare post-audit documentation independently and consolidate the knowledge gained.

BREAK

V. REQUIREMENTS OF ISO 27001:2023

  1. Key principles of ISO 27001:2023
    1. Overview of key terms and definitions used in the standard.
  1. Overview of the requirements of the standard’s clauses
    • Context of the organisation
    • Leadership
    • Planning
    • Support
    • Operation
    • Performance evaluation
    • Improvement
  1. Overview of Annex A
  2. Summary of the training
Contact
Would you like to customise this training course?
Get in touch with us and we’ll tailor it
to your company’s needs.

or call:

787 974 136 731 901 601

Benefits of attending a dedicated training course

Certyfikat

Participants receive a personalised certificate confirming their qualification to act as an Internal Auditor for the ISO 27001:2023 Information Security Management System.

Kartka i długopis

Each training programme can be tailored to the needs and specific characteristics of your company, and the training can be delivered based on the management system already in place within your organisation.

Rozmowa

Following the training, our trainers are at your disposal – they will answer all your questions and address any concerns.

Szkolenie

The training programme has been developed based on DJB Doradztwo’s 21 years of experience and combines theoretical knowledge with the ability to apply it in practice.

Czas

You have a say in the venue, time and date of the training – you can extend or shorten the training so that it does not interfere with your employees’ duties.

Nauka

We will enable your employees to acquire the knowledge and qualifications needed to conduct internal audits correctly.

Szkolenia

During the training, we will familiarise you with the key concepts, terminology and all the requirements relating to the audit process.

Człowiek

The trainers at DJB Doradztwo are qualified specialists with many years’ experience in implementing and maintaining systems compliant with the ISO 27001:2023 standard.

Wiedza

Through this training, you will learn practical solutions demonstrating how to meet the requirements of ISO 27001:2023 regarding the conduct of internal audits.

References

Read what participants think about our training

Philips
"PHILIPS POLSKA SP. Z O.O., headquartered in Warsaw, is pleased to recommend the consulting services provided by DJB Doradztwo Marcin Chorąży.

The work carried out by DJB Doradztwo fully met our quality expectations. It was individually tailored to the needs and specific nature of our organization, as well as to the expectations we had defined. The consultant assigned to the project demonstrated the appropriate competencies and extensive knowledge of the ISO 9001:2015 standard, and was always available to offer help and advice whenever needed."
PHILIPS POLSKA SP. Z O.O.
View testimonials
Wojewódzki Specjalistyczny Szpital im. M. Pirogowa w Łodzi - logo
Wojewódzki Specjalistyczny Szpital im. M. Pirogowa w Łodzi
On behalf of the Wojewódzki Specjalistyczny Szpital im. Pirogowa, I recommend DJB Doradztwo Marcin Chorąży as a firm that prepares organizations for the implementation of a Quality Management System in accordance with the requirements of the ISO 9001:2015 standard. We began our cooperation with DJB Doradztwo in 2017 and continue it to this day. The scope of our collaboration focused on issues related to the implementation of the system. The consultant working with our hospital demonstrated extensive subject matter expertise and conveyed a great deal of valuable information regarding the requirements of the standards, their application, and the principles of conducting the internal audit process in an accessible and engaging manner. In our opinion, DJB Doradztwo Marcin Chorąży is a reliable and highly recommended contractor for the implementation of the ISO 9001:2015 system.
Director of the M. Pirogov W.S.S.Roman Bocian, MD, PhD
View testimonials
CONTROL SYSTEM FMN - logo
CONTROL SYSTEM FMN Sp. z o.o. collaborated with DJB Doradztwo on the comprehensive adaptation of the ISO 9001:2009 system to the requirements of the new ISO 9001:2015 standard, DJB Doradztwo undertook to perform all necessary activities to enable our company to obtain the ISO 9001:2015 certificate, in particular: The employees of DJB Doradztwo performed their tasks in a professional manner. The company is characterized by timeliness and flexibility in problem-solving, as well as respect for the Client's interests.
The DirectorBożena Zawalska
View testimonials
Urząd Lotnictwa Cywilnego - logo
Urząd Lotnictwa Cywilnego is delighted to recommend the services of DJB Doradztwo Marcin Chorąży in the area of implementing the new ISO 9001:2015 quality management system standard. All of the consultant's activities were tailored to our specific needs and expectations. The consultant demonstrated extensive knowledge of the ISO 9001:2015 standard, which enabled him to suggest many valuable solutions. The documentation was prepared with care and precision. The training sessions conducted as part of the implementation were engaging and allowed us to gain a deeper understanding of the requirements of the new ISO 9001:2015 standard.
Director of the CEO's OfficeMagdalena Kapuśniak
View testimonials
View all testimonials
Djb Doradztwo

DJB DORADZTWO
Marcin Chorąży

ul. Kilińskiego 121 C / 152
90-049 Łódź
Offer
Company
Copyright 2026 DJB Doradztwo
Privacy Policy Contact