Course
digicode: IS27AI
ISO 27001 Implementation and Audit Preparation with AI
Discover how AI can help you implement ISO 27001, establish an ISMS, and prepare for audits – and learn about the new risks that AI systems themselves pose to your information security.
Duration
1 day
Price
1'000.–
Course documents
digicomp courseware
Please note
Please bring a laptop for the exercises.
Course facts
Download as PDF- Understanding the current state of AI models and tools and their targeted use for ISO 27001 tasks
- Understanding scenarios in which AI accelerates ISMS implementation and certification preparation
- Identifying new risks arising from the use of AI in the organization and addressing them within the ISMS
- Assessing the fundamentals and relevance of the EU AI Act for information security officers
- Evaluating agentic AI and RAG systems as a new governance challenge
1 AI in the Context of ISO 27001 – As of 2025/26
- Overview of current AI models and their use in a corporate context: ChatGPT, Claude (Anthropic), Microsoft Copilot, Google Gemini, local models (Llama, Mistral)
- Agentic AI: What are AI agents, how do they work—and what new risks do they pose?
- EU AI Act and Interfaces with ISO 27001: What Information Security Officers need to know now
- AI systems as a new attack surface in the ISMS: Prompt injection, data leaks via AI, uncontrolled AI use by employees
2 Phase: Introduction of the ISMS – AI as an Accelerator
- AI-supported analysis of existing documents and gap analysis
- Risk analysis with AI support: Prompts and tools for practical use
- Creating reference documents, guidelines, and communication with AI
- Assessment: Which AI tools are suitable for sensitive data – and which are not?
3 Phase ISMS Monitoring & CIP
- Creating and updating policies with AI
- AI-powered responses to user questions (internal chatbots, RAG systems)
- Business continuity management and asset management with AI support
- Governance of AI systems within the company: Who is authorized to use which AI, and how?
4 Phase Operations & Audit Preparation
- Preparing for the certification audit with AI
- Creating and reviewing documents for inconsistencies using AI
- Simulating certification questions with AI support
- Practical exercise: AI-supported checklists and audit workflows
Interactive, hands-on training for effective knowledge transfer and application-oriented learning.
Impulse sessions combined with practical exercises that give participants the opportunity to immediately apply and reinforce what they have learned.
A strong emphasis on discussions, sharing experiences, and collaborative problem-solving.
This training is aimed at:
- Individuals involved in the implementation of an ISMS
- Information security officers (CISO, ISB) responsible for ensuring compliance with information security requirements
- Auditors who wish to conduct and lead certification audits for ISMS
- Managers and consultants in the field of information security
- IT and security managers who support or manage AI projects within the company
Basic knowledge of AI tools (e.g., ChatGPT, Copilot, or similar). Knowledge of ISO 27001 is required.