Whilst ISO 19011 is not mandatory, it is recommended that auditors align to this guidance where appropriate to the specific needs and requirements of their audit programme.  Additional standards relevant to ISO 27001 may also be used when auditing individual elements of your ISMS:

  • ISO 27007:2020 provides guidance on ISMS auditing and concentrates on Clauses 4-10 of the Standard
  • ISO 27008:2019 provides guidance for the assessment of information security controls (Annex A of the Standard).
No items found.
"
URM is extremely trustworthy and reliable. We rely on URM for multiple services throughout the year, including penetration testing and PCI DSS audit services. As a smaller business, we have to be organised in our approach to compliance obligations and URM is a dependable partner which makes the difference.
contact US

Let us help you

Let us help you in your compliance journey by completing the form and letting us know how we can best support you.