Guest
Clause 5.1 / internal audit
First I would like to thank you, for all Advisera answers I have received. Answers have been top quality.
I have questions about clause 5.1. and internal audit preparations.
I am conducting an internal audit before certificate audit and doing my check list. What kind of hands-on evidence I can look for the compliance of clause 5.1, and what kind of questions use, to find and verify them?
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
Expert
Rhand Leal
Jun 30, 2021
To evidence fulfillment of clause 5.1, you need to look for evidence like:
- management meeting minutes, where decisions like approval of information security policy and of information security objectives are recorded.
- policies and procedures, where you can find definitions of security roles and responsibilities.
- performance reports, where you can find the results related to information security objectives.
As examples of questions, you can find them in the internal audit checklist template included in your toolkit, in the folder Internal Audit.
This article will provide you a further explanation about the internal audit checklist:
- How to make an Internal Audit checklist for ISO 27001 / ISO 22301 https://advisera.com/27001academy/knowledgebase/how-to-make-an-internal-audit-checklist-for-iso-27001-iso-22301/
Comment as guest or Sign in
Jun 30, 2021
Jun 30, 2021
Jun 30, 2021