Login
Start Free Trial Are you a business? Click Here

ISO 27001 Internal Auditor Course Reviews

4.8 Rating 117 Reviews
Company Reviews Product Reviews
1,344
 Metrics Info
Read Advisera Expert Solutions Ltd Reviews

About Advisera Expert Solutions Ltd:

We make standards & regulations easy to understand, and simple to implement.

Visit Product Page

Email:

support@advisera.com

Read Advisera Expert Solutions Ltd Reviews
Visit Product Page
Martin
Verified Reviewer
Module 2 - The planning phase Recap quiz ISO 27001 requires the identification of interested parties significant for the information security in your organization to be documented. It is NOT false. ISO 27001 does require the identification of interested parties and their requirements to be documented (i.e., maintained as documented information). Here’s the key text from ISO/IEC 27001:2022, Clause 4.2: “The organization shall determine the interested parties that are relevant to the information security management system and the requirements of these interested parties relevant to information security. The organization shall determine which of these requirements will be addressed through the information security management system.” And per Clause 4.3 and 7.5 (Documented information), ISO 27001 explicitly requires maintaining documentation for these determinations — meaning the analysis of interested parties and their relevant requirements must be recorded. Or a mi misundertanding something?
Helpful Report
Dear Martin, Thank you for your feedback and your review. Please note that in clause 4.2, we have the expression "shall determine." In ISO standards, the expression "shall determine" does not mean that something must be documented. "Shall" indicates a requirement, meaning that the organization is obligated to do something, in this case, determine relevant interested parties and their requirements. However, it does not imply that this determination must be documented. In the context of ISO standards, documentation is required only when the expression "shall be documented" is used, or as per clause 7.5, when the organization decides that particular documentation is required. Other than that, you do not need to document anything. If you have any further questions that we can help with, do not hesitate to contact us at support@advisera.com. Kind regards, Advisera Team
Enakeno
Verified Reviewer
The course training was very explicit and the content and additional readings were very helpful.
Helpful Report
Sue
Verified Reviewer
Course was presented well and easy to follow.
Helpful Report
Maria
Verified Reviewer
A great overview of what needs to be done to implement and maintain ISO 27001.
Helpful Report
Pete
Verified Reviewer
I haven't completed it yet, but what I've done so far has been very informative and is helping greatly. I really like the short "lectures" as these are long enough to deliver the message, but short enough to keep focus and engagement on the topic. The quiz questions are a good feature so that you can check understanding and read the explanation for each response id needed.
Helpful Report
Omotunde
Verified Reviewer
It’s a good course
Helpful Report
Anonymous
Verified Reviewer
Great course , thanks for same One observation ,I see that standard went through change of name in 2022 , and its new name is 'ISO/IEC 27001:2022 Information security, cybersecurity and privacy protection — Information security management systems — Requirements' I think the course is still using the old title . I may be wrong also . Thanks again for a great course and giving it free for learning purposes .
Helpful Report
Giorgio
Verified Reviewer
I appreciate the mix of written documents and videos.
Helpful Report
Our Company
Business Solutions Impressum Terms & Conditions User Privacy Policy Business User Privacy Policy Data Protection Data Request