Guest
Is Security Awareness training complaint enough for ISO 27001 audit?
Can you please clarify that the awareness training which is linked to our Advanced plan in Conformio is indeed complaint enough for ISO 27001 audit?
I just would like to rephrase my question earlier.
We are aware that the awareness training linked to our Advanced Plan are meant to help us with the employees awareness training control however, we are aim to use the scheduling option + quizzes and obviously monitor the activity. With that being said, would that be enough for auditing and to be complaint on that specific section? In addition, we have been following your Admin guidance for awareness training so, we are quite familiar with all options.
Assign topic to the user
Expert
Rhand Leal
Mar 22, 2022
Please note that the awareness training included with your Conformio plan covers the most common topics related to general employees training and awareness, but to be sure if it is enough for auditing purposes you need to verify the results of your risk assessment and applicable legal requirements (i.e., laws, regulations, and contracts) to check if no specific additional training is required.
For further information, see:
- How to perform training & awareness for ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2014/05/19/how-to-perform-training-awareness-for-iso-27001-and-iso-22301/
Comment as guest or Sign in
Mar 22, 2022
Mar 22, 2022
Mar 22, 2022