How to efficiently plan the audit
Compliments of the season to you. I have been following you for over a year now. I have watched your videos, bought your book on how to implement ISO 27001, and attended your Webinars.
My company just posted numerous positions for Intermediate 'Security Auditor' (With focus on ISO 27001) and I asked them if I can join the team to start gaining experience.. Their response is that I don't have any experience, though I have the training and certification (PECB Provisional Auditor ISO/IEC 27001, ISACA Cybersecurity Certificate and ISACA IT Audit Fundamentals). I am currently working as a Security Analyst..
How can I gain Audit experience to prepare for such opportunities or even start consultancy job?
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
Since an internal option for gaining audit experience is not available, you should search for opportunities of gaining such audit hours of experience in professional social networks or websites (by looking for people that are looking for personnel to help them with audit jobs, or personnel that are willing to accept you as an observer or apprentice in their audits).
Another alternative is to try to contact certification bodies and ask if you can participate as a trainee in their audits (this alternative is not always available).
This article will provide you with further explanation about becoming an auditor:
- How to become ISO 27001 Lead Auditor https://advisera.com/27001academy/knowledgebase/how-to-become-iso-27001-lead-auditor/
Comment as guest or Sign in
Jun 07, 2023