Preparing for and Conducting Internal ISO 27001 Audits – Recorded Webinar
When implementing ISO 27001, the International Standard for Information Security Management, organisations must follow a process of continual improvement and assure themselves that processes and controls they have implemented are working as intended. This is where internal auditing plays an absolutely pivotal role and getting the balance right regarding the approach (risk-based, process-based, control-based etc.) and how much auditing to provide assurance is vital.
Having been involved in over 300 successful ISO 27001 certifications URM Consulting Services (URM) is ideally placed to advise you on the essential activities and tasks you will need to carry out in order to have an effective ISO 27001 auditing function and programme. URM is delivering a series of webinars where it addresses all the key components of a successful internal auditing programme. In this webinar, URM will provide advice and guidance on the steps you should take in preparing for and conducting internal ISO 27001 audits.
- Preparing for audits
- Determining skills and competences required of the auditor
- Gaining management commitment
- Defining objectives, scope and criteria – needing to assess evidence fairly and objectively and arrive at acceptable conclusions
- Reviewing previous reports and templates
- Conducting audits
- Conducting opening meeting
- Collecting evidence
- Interview techniques
- Keeping the auditee informed
Please watch the introduction to the webinar below. For the full recording please register using the form below the video.