Take the ISO 27001 course exam and get the
EU GDPR exam for free
LIMITED-TIME OFFER – ENDS SEPTEMBER 28, 2023

Expert Advice Community

Guest

ISO 27001 and minor non-conformities

  Quote
Guest
Guest user Created:   Jul 20, 2023 Last commented:   Jul 20, 2023

ISO 27001 and minor non-conformities

We had a question come up regarding ISO 27001 and minor non-conformities. I’ll enter it below hoping that someone from the training team may be able to answer it for us.

Question we have;

We have a certified facility that had a few minor non-conformities during its last surveillance audit.
The audit provider gave the ISMS team until June 2023 to address them. They had 90 days to supply a fix.
Did that mean they needed to report back to the auditor with the remediation by June?
Or do they need to provide evidence that they were addressed by June at their next Audit coming up in March 2024?

So, does that ISMS team need to proactivity reach out to their auditor with the evidence that the non-conformities have been fixed?

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jul 20, 2023

In general, the results of the treatment of minor nonconformities are reported in the next scheduled audit, but the best approach here is for you to contact your certification body and confirm with them when the treatment results should be reported to the certification auditor. 

Quote
0 1

Comment as guest or Sign in

HTML tags are not allowed

Jul 20, 2023

Jul 20, 2023

Suggested Topics

Guest user Created:   Dec 17, 2022 ISO 27001 & 22301
Replies: 1
0 0

Questions ISO 27001

Guest user Created:   Jul 01, 2022 ISO 27001 & 22301
Replies: 1
0 1

ISO 27001 Toolkit Support