Build or upgrade your ISMS on our platform

Month: September 2021

Sort by:

How to write an internal audit report for ISO 27001

An Internal audit report structure for ISO 27001 is something you need to know. Creating an effective and professional internal audit report is essential for any successful ISO 27001 implementation. A good quality internal audit report is a snapshot of the overall implementation process and records the status of your ISO 27001 implementation in the certification lead up, along with details of areas that still need addressing.

Keep reading >

How to prepare for an internal ISO 27001 audit – The auditee’s perspective

Internal audits of ISO 27001 assist organisations in ensuring that their requirements and those required by the standard are being met. The ISO 27001 internal audit is firstly the process of determining if a company has the necessary procedures, processes, protocols, and people to protect its information and its information management systems against the ISO 27001 standard.

Keep reading >

What are the different types of ISO 27001 internal audits?

An audit of your ISMS allows for the management system to be reviewed by an objective and competent auditor. It will test the elements of the ISMS based on standard requirements. It will also allow more insight into the organisation’s current level of reaching its needs and corporate objectives.

Keep reading >

How to avoid common ISO 27001 internal audit mistakes

Internal audits of the management system are a mandatory requirement of ISO 27001 and all other mainstream ISO standards. The requirements are very minimal, however when examined objectively and the detail of them is very un-prescriptive.

Keep reading >

What is the ISO 27001 audit process?

Audits are commonly used to ensure that an activity meets a set of defined criteria. For all ISO management system standards, audits are used to ensure that the management system meets the requirements of the relevant standard, the organisation’s own requirements and objectives, and remains efficient and effective. It will be necessary to conduct a programme of audits to confirm this.

Keep reading >

How do I explain an ISMS to my colleagues?

An information security management system (ISMS) is essentially a cohesive collection of documents, systems and data that combine to enable the appropriate measures to be taken to manage information security to be managed for your business or organisation.

Keep reading >