Head of Personnel Certification and Trainings
Stefanie Murguia
4 days, Course series,
Information Security Auditor acc. to ISO 27001
Conduct internal audits yourself and contribute to continuous improvement.
Overview
The Information Security Auditor course series is the ideal supplement for trained Information Security Managers.
With the auditor training, you can carry out all internal audits yourself and contribute to continuous improvement, as well as optimally prepare a company for external audits with the help of the methods taught in the course.
In addition, you may be able to work as a freelance CIS auditor if you have the relevant professional experience.
Objective
After attending this series of courses, you will be able to plan and carry out both internal and external audits and analyze their results. You will be able to recognize and evaluate any weaknesses and potential for improvement.
Furthermore, you will have mastered the basic rules of communication in theory and practice and will be able to think in terms of systems.
Certification
CIS was the first organization in Austria to be accredited for personal certification. The certificates we issue therefore comply with nationally and internationally recognized standards.
After successfully passing the exam, you will receive the “Information Security Auditor according to ISO/IEC 27001” certificate, provided that you have at least two years of professional experience (within the last 3 years) in the field of information security management and can demonstrate 4 audits with a total of at least 15 audit days in the field of information security (including preparation and follow-up work, within the last 3 years).
If you do not yet have two years of experience or sufficient audit days, you will be issued with a certificate with the status “Candidate.” As soon as you have the required practical experience, we will reissue your certificate free of charge—simply, unbureaucratically, and as an expression of our commitment to quality. Please note: Candidate status cannot be extended.
As an Information Security Auditor, you support the “highest authority” for ISM systems in the company. You assess information security in terms of its compliance with standards and conformity with the company’s own guidelines, specifications and processes. You support the development of potential improvements before a company is awarded the CIS certificate for the best possible standard of security in accordance with ISO/IEC 27001 or an extension of the certificate is issued.
Modules
The Information Security Auditor training lasts 3 days and consists of:
- Audit techniques: Internal audits as a powerful tool for system improvement (ISAT, 1 day)
- Psychological basics for information security auditors: between auditor and developer. Systemic thinking, effective communication. (ISAP, 2 days)
- Information Security Auditor exam
Prerequisites for the exam
The Information Security Auditor exam, which lasts approximately one hour, takes place on Day 3. To participate, you must have a valid CIS certificate as an “Information Security Manager.” This ensures that auditors have a high level of qualification. The training opens up a wide range of career opportunities in a growing market. After successfully completing the final exam, you will receive the state and internationally recognized certificate “Information Security Auditor according to ISO/IEC 27001.”
Requirements and renewal
Requirements for issuing the certificate
- Proof of at least two years of professional experience in the field of information security management within the last three years.
- Four audits with a total of at least 15 audit days in the field of information security (including preparation and follow-up work, within the last three years)
If you have less experience: Issuance of the certificate with candidate status (as soon as you have the required practical experience, we will reissue your certificate free of charge – simply, unbureaucratically, and as an expression of our commitment to quality. Please note: Candidate status cannot be extended).
In German Language
This training is currently only available in German. However, all our public training courses can be customized to your needs and your company as in-house training courses.
If you are interested in the course in other languages, please get in touch with us.
Dates
The prices quoted are exclusive of 20% VAT. If you have any questions or special requirements, e.g. limited mobility, please contact us and we will be happy to help.
ViennaGerman
17.11.2025 to 19.11.2025
€ 3.490,00
Regular price excluding 20% VAT.
ViennaGerman
09.03.2026 to 11.03.2026
€ 3.490,00
Regular price excluding 20% VAT.
ViennaGerman
29.06.2026 to 01.07.2026
€ 3.490,00
Regular price excluding 20% VAT.
ViennaGerman
14.09.2026 to 16.09.2026
€ 3.490,00
Regular price excluding 20% VAT.
ViennaGerman
09.11.2026 to 11.11.2026
€ 3.490,00
Regular price excluding 20% VAT.
Our trainings team
We support you with comprehensive expertise and proven processes to help you stay competitive and achieve your long-term goals.
Personnel Certification and Trainings
Tamara Safranek
Personnel Certification and Trainings
Tina Hojsa
