This unit describes the skills and knowledge required to identify cyber security standards and laws and evaluate an organisation’s working practices and compliance to these standards and laws as well as determine changes required to continue compliance.

It applies to those who work in an internal audit function, including those who specialise in cyber security and compliance and are responsible for implementing and monitoring an organisation’s compliance to cyber security standards and laws both locally and internationally.