SPRING DISCOUNT
Get 30% off on toolkits, course exams, and books.
Limited-time offer – ends May 26, 2022
Use promo code:
SPRING30

Expert Advice Community

Guest

first internal audit - scope period

  Quote
Guest
Emily Created:   Aug 05, 2020 Last commented:   Aug 07, 2020

first internal audit - scope period

For the first internal audit of the ISMS prior to certification, what should the scope period be? the past year?

Assign topic to the user

ISO 27001 ISMS SCOPE DOCUMENT

Define the boundaries of ISMS for ISO 27001.

ISO 27001 ISMS SCOPE DOCUMENT

Define the boundaries of ISMS for ISO 27001.

Expert
Rhand Leal Aug 07, 2020

For the first internal audit, the Internal auditor has to review all the relevant facts from the day the ISMS documents became valid. In case this means too many records, the auditor needs to decide how to sample the records.

But it is important to note that certification bodies have their own criteria about the duration of the ISMS operation before the certification, so you must contact them previously to align this situation.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Aug 05, 2020

Aug 07, 2020

Suggested Topics

Guest user Created:   Jul 22, 2020 ISO 27001 & 22301
Replies: 1
0 0

ISO certification

Guest user Created:   Jun 27, 2019 ISO 27001 & 22301
Replies: 1
0 0

Internal audit planning