25.9.12
This website uses cookies to ensure you get the best experience on our website. Learn more

Information Security Audit ‎‎‎ ‎ ‎ ‎ ‎ ‎ ‎‎‎ ‎ ‎ ‎ ‎‎ ‎ ‎ (ISO/IEC 27007) ‎Foundation

Aloysio Regis Gouveia Filho

Earners of the Information Security Audit Foundation (ISO/IEC 27007) certification have demonstrated foundational knowledge of ISO/IEC 27007. This certification confirms that the professional has the foundational knowledge to conduct an Information Security Audit in accordance with the ISO/IEC 27007 standard. The exam covers topics such as Terms and definitions, Normative references, Principles of auditing, Managing an audit programme (Establishing audit programme objectives, Determining and evaluating audit programme risks and opportunities, Establishing audit programme, Implementing audit programme, Monitoring audit programme, and Reviewing and improving audit programme), Conducting an audit (Initiating audit, Preparing audit activities, Conducting audit activities, Preparing and distributing audit report, Completing audit, and Conducting audit follow-up), Competence and evaluation of auditors (Determining auditor competence, Establishing auditor evaluation criteria, Selecting appropriate auditor evaluation method, Conducting auditor evaluation, and Maintaining and improving auditor competence). Earning criteria: To earn the Information Security Audit Foundation (ISO/IEC 27007) certification candidates must successfully pass the following exam: ITC-064: Information Security Audit Foundation (ISO/IEC 27007) exam - Foundation level. A score of 70% or higher is required to pass the exam. The ITC-064: Information Security Audit Foundation (ISO/IEC 27007) is a closed-book and remotely proctored exam. ITCERTS recommends that candidates have at least 6 months of work experience in Information Security before sitting for the exam. This certification is considered good-for-life and does not expire.

Skills / Knowledge

  • Information Security
  • Audit

Issued on

August 20, 2023

Expires on

Does not expire

Earning Criteria

Required

exam
Pass the ITC-064: Information Security Audit Foundation (ISO/IEC 27007) exam.