Expert Advice Community

Home / ISO 27001 & 22301 / Audit to the area of operations

Guest

Audit to the area of operations

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Jan 12, 2016 Last commented:   Jan 12, 2016

Audit to the area of operations

ISO 27001 & 22301
0 0

Assign topic to the user

ISO 27001 LEAD AUDITOR COURSE

Become an ISO 27001 certification auditor.

ISO 27001 LEAD AUDITOR COURSE

Become an ISO 27001 certification auditor.
Guest
AntonioS Jan 12, 2016

Can you provide information on the steps for it security audit to the area of operations?
 

Answer:

Yes, sure, this article can be interesting for you “How to make an Internal Audit checklist for ISO 27001 / ISO 22301” : https://advisera.com/27001academy/knowledgebase/how-to-make-an-internal-audit-checklist-for-iso-27001-iso-22301/
When you perform an internal audit, you need to review all areas that are in the scope of the ISMS, including if necessary operations (from my point of view, is very important to visit the data center). But keep in mind that the Internal Auditor does not need to perform a pentest or an analysis of vulnerabilities, this job is for an ethical hacker.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jan 12, 2016

Jan 12, 2016

Suggested Topics
Guest user Created:   Oct 28, 2019 ISO 27001 & 22301
Replies: 1
0 0

ISMS scope change
Guest user Created:   Oct 22, 2020 ISO 27001 & 22301
Replies: 1
0 0

Scope of areas under ISO 27001
Guest user Created:   Nov 26, 2016 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 records of implementation