| Module 1 - Introduction about ISO 22301:2019 and process approach |
|
| | Introduction to ISO 22301 Internal Auditor Training |
|
| | Objectives of the Course |
|
| | Contents of the course |
|
| | BCMS Audit training course |
|
| | What is ISO? |
|
| | The Process - What is a Process |
|
| | Purpose of BCMS |
|
| | Learning Objectives |
|
| | Factors affecting BCMS |
|
| | Factors affecting BCMS |
|
| | Factors affecting BCMS |
|
| | History of BCMS ISO 22301:2019 |
|
| | History of BCMS ISO 22301:2019 (Continued1) |
|
| | Compatability with ISO standards |
|
| | Legal Compliance |
|
| | PDCA Cycle Applied to BCMS |
|
| | PDCA Cycle & Continual improvement |
|
| | Process based BCMS |
|
| | To Implement an BCMS |
|
| | Application of PDCA Cycle - Plan1 |
|
| | Application of PDCA Cycle - Plan2 |
|
| | Application of PDCA Cycle - Plan3 |
|
| | Application of PDCA Cycle - Plan4 |
|
| | Application of PDCA Cycle - Do |
|
| | Application of PDCA Cycle - Check |
|
| | Application of PDCA Cycle - Act |
|
| | Learning Objective |
|
| | Summary - What we learned in this section |
|
| | Section 1 Assessment ISO 22301 |
|
| Module 2 - Business continuity Management System Principles & HLS |
|
| | The Organization and its Context |
|
| | Understanding of the organization and its context |
|
| | Amount of Documentation |
|
| | Control of documented Information |
|
| | Records |
|
| | Auditing records |
|
| | Business impact analysis |
|
| | BIA Objectives |
|
| | Steps in BIA |
|
| | BCM - Risk Management technique |
|
| | Business impact analysis |
|
| | Risk Appetite |
|
| | Risk treatment can involve |
|
| | Determine BCM strategies |
|
| | Developing and implementing a BCM responses |
|
| | Developing and implementing a BCM responses |
|
| | Continual improvement |
|
| | Summary of What we learned |
|
| | Section 2 assessment - ISO 22301 |
|
| Module 3 - Context of the Organization |
|
| | 0.1 General |
|
| | 0.2 Benefits of BCMS |
|
| | 0.3 The Plan-Do-Check-Act Model |
|
| | 0.4 Components of PDCA in BCMS |
|
| | 0.5 Contents of ISO 22301 |
|
| | 1.0 Scope |
|
| | 3.0 terms and Definition |
|
| | 3.0 terms and Definition |
|
| | 3.0 terms and Definition |
|
| | 3.0 terms and Definition |
|
| | 3.0 terms and Definition |
|
| | 4.0 Context of the organization |
|
| | 4.1 Understanding of the organization and its context |
|
| | 4.2 Understanding the needs and expectations of interested parties SL1 |
|
| | 4.2 Understanding the needs and expectations of interested parties SL2 |
|
| | 4.2 Understanding the needs and expectations of interested parties SL3 |
|
| | 4.3 Determining the scope of the Business continuity management system |
|
| | 4.3 Determining the scope of the Business continuity management system |
|
| | 4.4 Business continuity management system |
|
| | Summary - What we learned in this section 3 |
|
| | Section 3 Assessment ISO 22301 |
|
| Module 4 - Leadership principles |
|
| | 5.0 Leadership |
|
| | 5.1 Leadership and Commitment |
|
| | 5.1 Leadership and Commitment |
|
| | 5.2 Policy |
|
| | 5.2 Policy |
|
| | 5.3 Organizational Roles, Responsibilities & Authorities |
|
| | Summary of What We learnt sec 4 |
|
| | Section 4 assessment - ISO 22301 |
|
| Module 5 - Planning |
|
| | 6.0 Planning |
|
| | 6.1 Actions to address risks and opportunities |
|
| | 6.2 Business continuity objectives and planning to achieve them |
|
| | 6.3 Planning of changes |
|
| | 6.3 Planning of changes to the BCMS |
|
| | Summary of What we learnt Sec 5 |
|
| | Section 5 Assessment ISO 22301 |
|
| Module 6 - Support Process |
|
| | 7.0 Support |
|
| | 7.1 Resources |
|
| | 7.2 Competence |
|
| | 7.3 Awareness |
|
| | 7.4 Communication |
|
| | 7.5 Documented Information 7.5.1 General |
|
| | 7.5 Documented Information 7.5.2 Creating and updating |
|
| | 7.5.3 Control of documented information |
|
| | 7.5.3 Control of documented information |
|
| | Summary of What we learnt |
|
| | Section 6 Assessment ISO 22301 |
|
| Module 7 - Operation |
|
| | 8.0 Operation |
|
| | 8.1 Operational planning and control |
|
| | 8.2.1 General |
|
| | 8.2.2 Business impact analysis |
|
| | 8.2.2 Business impact analysis |
|
| | 8.2.3 Risk assessment |
|
| | 8.3.1 General |
|
| | 8.3.2 Identification and selection of strategies and solutions |
|
| | 8.3.2 Identification and selection of strategies and solutions |
|
| | 8.3.3 Resource requirements |
|
| | 8.3.4 Implementation of solutions |
|
| | 8.3.4 Implementation of solutions |
|
| | 8.3.4 Implementation of solutions |
|
| | 8.3.4 Implementation of solutions |
|
| | 8.4.1 General |
|
| | 8.4.2 Response structure |
|
| | 8.4.2 Response structure |
|
| | 8.4.3 Warning and communication |
|
| | 8.4.3 Warning and communication |
|
| | 8.4.4 Business continuity plans |
|
| | 8.4.4 Business continuity plans |
|
| | 8.4.5 Recovery |
|
| | 8.4.5 Recovery |
|
| | 8.5 Exercise programme |
|
| | 8.5 Exercise programme |
|
| | Summary of What We learnt sec7 |
|
| | Section 7 assessment - ISO 22301 |
|
| Module 8 - Performance evaluation |
|
| | 9.0 Performance evaluation |
|
| | 9.1.1 General |
|
| | 9.1.2 Evaluation of business continuity plans, procedures and capabilities |
|
| | 9.2.1 The organization shall: |
|
| | 9.2.2 The organization shall: |
|
| | 9.3.1 General |
|
| | 9.3.2 Management review input |
|
| | 9.3.2 Management review input |
|
| | 9.3.3 Management review outputs |
|
| | 9.3.3 Management review outputs |
|
| | Summary of What we learnt |
|
| | Section 8 Assessment ISO 22301 |
|
| Module 9 - Improvement |
|
| | 10.0 Improvement |
|
| | 10.1 Nonconformity and corrective action |
|
| | 10.1 Nonconformity and corrective action |
|
| | 10.1 Nonconformity and corrective action |
|
| | 10.2 Continual improvement |
|
| | The BCMS must include |
|
| | Summary of What We learnt |
|
| | 3 years audit cycle |
|
| | Risk management Vs internal Audit |
|
| | Section 9 Assessment ISO 222301 |
|
| Module 10 - Internal Audit Introduction |
|
| | Introduction to ISO 19011- Internal audit |
|
| | Audit definition |
|
| | Audit Terms and Definitions |
|
| | Principles of Auditing |
|
| | Principles of Auditing |
|
| | Audit Objectives |
|
| | Internal Vs External Audits |
|
| Module 11 - Planning and preparation for and audit |
|
| | Planning and preparation of audit - different stages in an audit cycle |
|
| | Audit Management |
|
| | Internal Audits |
|
| | Planning and preparation for an audit |
|
| | Planning and preparation of audit |
|
| | Planning and preparation for an audit- Initiating the audit |
|
| | Audit criteria Vs audit scope |
|
| | Planning & Preparation of an Audit Selection of an audit team |
|
| | Planning & Preparation of an Audit - Document review |
|
| | Planning & Preparation for an Audit Preparation for on-site audit |
|
| Module 12 - Performing an audit |
|
| | Performing an audit- Audit Management |
|
| | Performance of an Audit |
|
| | Performing an Audit – From collecting information to audit conclusions |
|
| | Audit team - Participants |
|
| | Key qualities of an auditor |
|
| | Performing an Audit – Audit Approach – Attitude of Auditor |
|
| | Audit approach - Communication process |
|
| | Audit approach - Communication process |
|
| | Audit approach - Communication process |
|
| | Audit approach - Communication process |
|
| | Audit approach - Communication process |
|
| | Audit approach - Communication process |
|
| | Audit Approach – Questioning techniques |
|
| | Audit Approach – Questioning techniques |
|
| | Audit approach - Communication process- clarifying questions |
|
| | Documentary evidence and follow up actions |
|
| | Performing an Audit – How do auditors find evidence ? |
|
| | Time management - Preparing a Checklist Format |
|
| | Preparing a Checklist Format |
|
| | Purpose of checklists |
|
| | Performing an Audit -Observe Operational Control |
|
| | Performing an Audit -Observe Operational Control |
|
| | Section Quiz IQA |
|
| | Follow Audit trials |
|
| Module 13 - Audit reporting and NCR writing tips |
|
| | Audit Management - reporting an audit |
|
| | Audit reporting |
|
| | Audit reporting – Writing Non-conformity reports |
|
| | NCR’s & Corrective actions Concepts relating to requirements |
|
| | Audit reporting – Writing Non-conformity reports |
|
| | NCR’s and Corrective actions -Examples of Objective Evidence |
|
| | Audit reporting – Writing Non-conformity reports |
|
| | Audit reporting – Writing Non-conformity reports |
|
| | NCR’s and Corrective action |
|
| | Writing Non-conformity reports Do and donts |
|
| | Writing Non-conformity reports- scenario- 1 |
|
| | Writing Non-conformity reports- scenario- 2 |
|
| | Writing Non-conformity reports- scenario- 3 |
|
| | Writing Non-conformity reports- matrix |
|
| | Writing Non-conformity reports- auditor and auditee |
|
| | Writing Non-conformity reports- corrective action |
|
| | Difficulties encountered during internal audits |
|
| | A piece of counsel |
|
| | THANK you |
|
| Final assessment - ISO 22301:2019 Awareness Training |
|
| | Final assessment ISO 22301 IQA |
|