The cart is empty

ISO 27701:2019 PIMS Internal Auditor

The new version of ISO 27701:2019 “Security techniques – Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management – Requirements and guidelines” has been published. In terms of privacy information management, internal audits help any type of organization enhance its internal control and monitor the company’s compliance with this Privacy Information standard in order be prepared for disruptive incidents and recover more quickly.


Expand your ability to effectively conduct internal audits within your company or train your audit team according to ISO 27701 Privacy Information Management Systems standard with our Internal Auditor ISO 27701 training course.


This course, designed by LiberoAssurance Training team, provides all the necessary knowledge for ISO 27701:2019 PIMS and the audit methodology applied to this standard. 


Aims & Objectives
  • Provide the key requirements and benefits of ISO 27701:2019
  • Outline the steps towards effective business continuity management
  • Compare ISO 27701:2019 towards its old version
  • Provide the application of risk-based thinking, frameworks and process management


Learning Outcomes

Having successfully completed this course you will be able to:

  • Understand the key requirements, terms and definitions of ISO 27701:2019 and its structure
  • Learn the importance and benefits of an ISO 27701:2019 PIMS
  • Apply methods and tools to manage business continuity system
  • Enhance skills to conduct effective audits in any auditing situation
  • Plan, conduct, report and follow up an internal audit
  • Establish and plan the activities of an audit team
  • Communicate effectively with the auditee and audit client
  • Organise and direct audit team members


Who should attend?
  • Business professionals
  • Management representatives
  • Appointed auditors
  • PIMS consultants


Prerequisite skills & knowledge: ISO/IEC 27001 and ISO/IEC 27002


Available in-house/distant learning? Yes


Created by: LiberoAssurance Continuous Professional Development Training Centre Level 1 – Accredited by Greek Ministry of Education & Religious Affairs              Accreditation No. 2101338


Part A Contents: ISO 27701:2019 Requirements and Guidelines

Clauses 0-3
  • Introduction
  • Scope
  • Normative references
  • Terms and definitions
Clause 4 - General
  • Structure of this standard
  • Application of ISO/IEC 27001:2013 requirements
  • Application of ISO/IEC 27002:2013 guidelines
  • Customer
Clause 5 - PIMS-specific requirements related to ISO/IEC 27001
  • General
  • Context of the organization
  • Leadership
  • Planning
  • Support
  • Operation
  • Performance evaluation
  • Improvement
Clause 6 - PIMS-specific guidance related to ISO/IEC 27002
  • General
  • Information security policies
  • Organization of information security
  • Human resources security
  • Asset management
  • Access control
  • Cryptography
  • Physical and environmental security
  • Operations security
  • Communications security
  • Systems acquisition, development and maintenance
  • Supplier relationships
  • Information security incident management
  • Information security aspects of business continuity management
  • Compiance
Clause 7 - Additional ISO/IEC 27002 guidance for PII controllers
  • General
  • Conditional for collection and processing
  • Obligations to PII principals
  • Privacy by design and privacy by default
  • PII sharing, transfer and disclosure
Clause 8 - Additional ISO/IEC 27002 guidance for PII processors
  • General
  • Conditions for collection and processing
  • Obligations to PII principals
  • Privacy by design and privacy by default
  • PII sharing, transfer and disclosure
Annex A (normative)
  • PIMS-specific reference control objectives and controls (PII Controllers)
Annex B (normative)
  • PIMS-specific reference control objectives and controls (PII Processors)
Annex C (normative)
  • Mapping to ISO/IEC 29100
Annex D (informative)
  • Mapping to the General Data Protection Regulation
Annex E (informative)
  • Mapping to ISO/IEC 27018 and ISO/IEC 29151
Annex F (informative)
  • How to apply ISO/IEC 27701 to ISO/IEC 27001 and ISO/IEC 27002


Part B Contents: ISO 27701:2019 Internal Auditor
Internal audit overview
  • What is an Audit?
  • Why Audit?
  • Audit Types
Internal Audit
  • Principles of auditing
  • Scheduled and unscheduled Audits
  • What to Audit – Technical Audit
  • Steps involved in internal audit
  • Scope of audit
  • Frequency of audit
  • Internal Audit process
Audit Steps
  • Performing audit activities
  • Audit Plan
  • Developing Checklists
  • Opening Meeting
  • Conducting the Audit
  • Recording Results
  • Non-Conformities & Non-Compliances
  • Closing Meeting (s)
  • Audit Report
  • Audit Follow-up Activities
  • Auditee’s conduct
Audit Programme
  • Establishing the Audit programme objectives
  • Identifying and evaluating audit programme risks
  • Process flow for the management of an audit programme
  • Managing an audit programme
  • Audit programme Implementation
Audit tips and techniques
  • Tips to trained internal auditor
  • Question Technique
  • Competence of the audit programme manager
Auditor’s Performance
  • Auditor’s Quality
  • The Auditors conduct
  • Auditor’s Code of Conduct
  • Auditor Characteristics
  • Auditor's personal behavior
  • The Auditee’s conduct
  • Selecting the audit team members
  • Skills of audit team leaders
  • How to evaluate an Auditor


Exam & Certification
  • Exam on ISO 27701:2019 PIMS Internal Auditor
  • “ISO 27701:2019 Privacy Information System Internal Auditor” Certificate
Teaching Methods
  • Detailed seminar presentations (Available for download)
  • Terms and definitions
  • No. of slides: 314


  • Reading lists & Resources: Available in the presentations


Study time allocation
  • Private study hours: 37
  • Trainer contact hours: Availability and Competence of instructors upon request
  • Enrollment Duration: 90 days (starting from the date of purchase)
  • CPD Points: 37
  • ECTS/ECVET Points: 1.2


Assessment methods


% contribution to final mark

% Minimum passing grade

Exam for ISO 27701:2019 Privacy Information System Internal Auditor





On successful completion of the course assessment, participants will be issued with a ‘Certificate of Success’


   100% Online course
   CPD Accredited eCertificate – Global acceptance
   Downloadable course material
   E-learning Mobile App
   Enrolment: 3 months
   Flexible schedule
   Language: English


View LiberoAssurance Certificate


250,00 €


  • Comment
  • Post a comment
List of the comments:
No comments have been posted yet.

Give your advice about this item: