Compliance verification
How do you verify compliance to regulatory requirements? It should be a scheduled audit or random verification of meeting criteria? Thank you for consideration.
Assign topic to the user
Considering ISO 22301 requirements, which are the same for other ISO management systems, such as ISO 9001 and ISO 14001, you must perform internal audits at planned intervals, but random verification can also be used if the organization considers this as a good approach for its context.
These articles will provide you further explanation about internal audit (they are focused on ISO 27001, but the general concept also applies to ISO 22301):
- How to prepare for an ISO 27001 internal audit https://advisera.com/27001academy/blog/2016/07/11/how-to-prepare-for-an-iso-27001-internal-audit/
- How to make an Internal Audit checklist for ISO 27001 / ISO 22301 https://advisera.com/27001academy/knowledgebase/how-to-make-an-internal-audit-checklist-for-iso-27001-iso-22301/
Comment as guest or Sign in
Sep 16, 2019