Learning Marketplace

ISO/IEC 27001:2013 Internal Auditor (TPECS)

BSI's "ISO 27001:2013 Internal Auditor" competency-based 3-day course teaches a general understanding of the concepts of the ISO 27001:2013 standard and the principles and practices of effective internal audits in accordance with ISO 19011:2018, "Guidelines on Auditing Management Systems". Experienced instructors explain the clauses of ISO 27001:2013 in detail and guide students through internal audits that are required for an information security management system. Our qualified instructor will also help you to boost your audit capabilities with the lates developments of the 19011 standard. Students gain necessary auditing skills through a balance of formal classroom tutorials, practical role-playing, group workshops, and open forum discussions.

This course comprises the following two Exemplar Global TPECS Competency Units whose outcomes are certified by Exemplar Global:

IS - Information Security Management Systems
AU - Management Systems Auditing
Attendees successfully completing this course receive a Certificate of Attainment for each of Exemplar Global Competency Units listed above.

New to TPECS?

For more information, please see our Understanding the TPECS Course Structure page.

Learning objectives:

  • Understand information security management definitions, concepts, and guidelines
  • Understand the purpose of the ISO 27000 series
  • Understand the requirements of the ISO 27001:2013 standard
  • Understand the roles and responsibilities of the auditor
  • Apply ISO 19011:2018 concepts, new terminology and guidelines
  • Understand the types of risks and opportunities associated with auditing
  • Recognize the principles, practices, and types of audits
  • Conduct all phases of an internal audit adopting a risk-based approach
  • Prepare and present effective reports
  • Understand Exemplar Global's certification scheme

Course materials:

Students receive comprehensive course manuals with reference materials.

Who should attend

  • Individuals interested in conducting, managing, or participating in first-party (internal) audits
  • Management system implementation team members
  • Information Security Managers


A prior review of the ISO 27001:2013 and ISO 27002:2013 standards and knowledge of information security practices and an understanding of auditing principles is suggested for this course.

Course Logistics:

There are written tests on each of the competency units in turn on Days 2 and 3. Detailed exam instructions will be provided. Certificates of Attainment in each competency unit will be provided for students who are deemed "Competent" for each competency unit. Certificates of attendance are provided to those who do not pass the competency test(s), and students will be given the opportunity to retake the test(s).

Upcoming Course Dates

The venues for scheduled courses are tentative until receipt of course confirmation from BSI.

Start/End Date and Time Location Fee Enroll
  • Oct 22, 2018 8:00 AM - 5:30 PM
  • Oct 23, 2018 8:00 AM - 5:30 PM
  • Oct 24, 2018 8:00 AM - 6:00 PM
Dulles, VA
Crowne Plaza Dulles Airport
2200 Centreville Road
Herndon, VA 20170
United States
View Location Websitemap this location
USD $1950.00Enroll
  • Nov 05, 2018 8:00 AM - 5:30 PM
  • Nov 06, 2018 8:00 AM - 5:30 PM
  • Nov 07, 2018 8:00 AM - 6:00 PM
Chicago, ILUSD $1950.00Enroll
  • Nov 12, 2018 8:00 AM - 5:30 PM
  • Nov 13, 2018 8:00 AM - 5:30 PM
  • Nov 14, 2018 8:00 AM - 6:00 PM
Seattle, WA
Crowne Plaza Seattle Airport
17338 International Boulevard
Seattle, WA 98188
United States
(206) 428-2123map this location
USD $1950.00Enroll
  • Dec 10, 2018 8:00 AM - 5:30 PM
  • Dec 11, 2018 8:00 AM - 5:30 PM
  • Dec 12, 2018 8:00 AM - 6:00 PM
San José, CA
Biltmore Hotel and Suites
2151 Laurelwood Road
Santa Clara, CA 95054
United States
View Location Websitemap this location
USD $1950.00Enroll