ISO 27001 Clause 7.2 (Competence) and 7.3 (Awareness) require you to ensure people performing work that affects information security are competent and aware. The Training Records module tracks this evidence.
Adding a training record
Go to ISO 27001 → Training Records and click Add Record.
| Field | Description |
|---|---|
| Participant | Name or group who received the training |
| Training Topic | Subject of the training (e.g., "Information Security Awareness") |
| Provider | Who delivered the training (internal or external) |
| Date | When the training was completed |
| Verified | Whether competence was assessed and verified (e.g., passed a test) |
The ISO 27001 dashboard shows training completion statistics. Aim for 100% of relevant personnel having verified training records.