CONTACT US twitter facebook

ISO 27701 Internal Auditor

Course description

During this training course, you'll gain the expertise and abilities needed to strategize and execute internal audits in line with ISO 19011 and ISO/IEC 17021-1 certification procedures.

You will learn about privacy protection in the context of processing personally identifiable information (PII) through hands-on exercises. These exercises will also equip you with mastery over audit techniques, enabling you to proficiently manage an internal audit programme, establish effective customer communication and resolve any potential conflicts.

Upon the completion of this course, you'll have the opportunity to take the exam. If you successfully clear the exam, you'll obtain the "Certified ISO/IEC 27701 Internal Auditor" credential. This certificate confirms your capability and competence to audit organizations following best practice guidelines.

Target Audience

  • Internal Auditors seeking to perform Privacy Information Management System (PIMS) audits
  • Managers or consultants seeking to better understand the PIMS audit process
  • Individuals responsible for maintaining conformance with PIMS requirements
  • Technical experts seeking to prepare for a PIMS Certification audit
  • Expert advisors in the protection of Personally Identifiable Information (PII) 

Learning outcomes

  • Master a Privacy Information Management System (PIMS) and its processes based on ISO/IEC 27701
  • Identify the relationship between ISO/IEC 27701, ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks
  • Acquire the competences of the auditor’s role in planning, leading, and following up on a management system audit in accordance with ISO 19011.
  • Learn how to interpret the requirements of ISO/IEC 27701 in the context of a PIMS audit

Education approach

  • This training is based on ISO 19011 best practice used in PIMS auditing
  • Modules are illustrated with real world examples
  • Exercises are based on a real world case study
  • Quizzes are similar to the Certification Exam


  • A foundational understanding of information security and privacy, and a comprehensive knowledge of audit principles.

Course Overview

  • Module 1 Foundational principles and concepts of a Privacy Information Management System (PIMS). 
  • Module 2 Privacy Information Management System (PIMS) requirements 
  • Module 3 Foundational audit concepts and principles 
  • Module 4 Preparing for an ISO/IEC 27701 audit 
  • Module 5 Conducting an ISO/IEC 27701 audit 
  • Module 6 Closing an ISO/IEC 27701 audit 
  • Module 7 Managing an ISO/IEC 27701 internal audit programme

Course Agenda

  • Day 1: Introduction to Privacy Information Management System (PIMS) and ISO/IEC 27701
  • Day 2: Audit principles, preparation, and launching of an audit
  • Day 3: On-site audit activities
  • Day 4: Closing the audit and the Certification Exam


  • All candidates at official training courses are tested throughout their course with quizzes and exercises, in combination with a final exam held on the last day of the course.  Both elements are a part of the overall score. For this course, the final exam constitutes a 12 question essay type which should be completed within 180 minutes. A passing score is achieved at 70%. Self-study candidates can purchase an exam voucher from our Store.
  • Exam results are returned within 24 hours, with successful candidates receiving both a digital badge and a Certificate of Achievement
download pdf