Who are the typical auditees in an ISO 27001 internal audit?

During an internal audit, an auditor will need to speak to people at different levels and authorities within the business - such as:

  • The person who has overall accountability for the process, system or control
  • The person who conducts the process on a day-to-day basis
  • If auditing the awareness of employees, a random sampling of employees, chosen by the auditor, from different areas of the organisation will be needed
No items found.
"
From beginning to end URM made achieving PCI compliance incredibly easy & worked with us to educate us on the requirements. They were always available for a call whenever we needed to discuss queries along the way & were always flexible to our internal deadlines. We would highly recommend URM from a consultancy & auditing perspective.
contact US

Let us help you

Let us help you in your compliance journey by completing the form and letting us know how we can best support you.