ISO 27001: The Process Q1-2023

Pre Audit Activities

GAP ANALYSIS: The comparison of actual performance with potential or desired performance

EVIDENCE REQUEST LIST: The ISMS needs a while to settle down, operate normally and generate the records after it has been implemented.

PREPARE FOR AUDIT: The ISMS needs a while to settle down, operate normally and generate the records after it has been implemented

STATEMENT OF APPLICABILITY: A5.32. Intellectual Property Rights

  • Not Applicable
  • Justification
    Company A does not have Intellectual Properties

ASSET REGISTER: An asset register is a complete listing of a business or an entity’s physical resources.

  • Name
  • Serial Number
  • Location
  • Asset Owner
  • Version

Audit Activities

Auditor will verify:

  • Procedures
  • Operations manual
  • Records
  • All other control

Certificate of compliance from an accredited certification body has credibility with other organizations

error: Content is protected !!