Expert Advice Community

Guest

Clause 5.1 / internal audit

  Quote
Guest
Guest user Created:   Jun 30, 2021 Last commented:   Jun 30, 2021

Clause 5.1 / internal audit

First I would like to thank you, for all Advisera answers I have received. Answers have been top quality.

I have questions about clause 5.1. and internal audit preparations.

I am conducting an internal audit before certificate audit and doing my check list. What kind of hands-on evidence I can look for the compliance of clause 5.1, and what kind of questions use, to find and verify them?

0 0

Assign topic to the user

Assign

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jun 30, 2021

To evidence fulfillment of clause 5.1, you need to look for evidence like:

  • management meeting minutes, where decisions like approval of information security policy and of information security objectives are recorded.
  • policies and procedures, where you can find definitions of security roles and responsibilities.
  • performance reports, where you can find the results related to information security objectives.

As examples of questions, you can find them in the internal audit checklist template included in your toolkit, in the folder Internal Audit.

This article will provide you a further explanation about the internal audit checklist:

Quote
0 1

Comment as guest or Sign in

HTML tags are not allowed

Jun 30, 2021

Jun 30, 2021