ISO 27001 certification process
1. I am currently in the process of trying to get our company ISO 27001 certified. That being said, after going through your toolkit and getting all the document and policies in place, what would be our next step?
2. Who is it that certifies us that we are ISO 27001 certified and provides the certification?
3. I also see that you have a course for lead auditor, what is the benefit of this certification?
Assign topic to the user
1. I am currently in the process of trying to get our company ISO 27001 certified. That being said, after going through your toolkit and getting all the document and policies in place, what would be our next step?
After the implementation of documents and controls, you need to make sure that everyone in the company is complying with ISMS documents, i.e. performing all the activities prescribed there.
These articles will provide you further explanation about the implementation process:
- ISO 27001 implementation checklist https://advisera.com/27001academy/knowledgebase/iso-27001-implementation-checklist/
- How to prepare for an ISO 27001 internal audit https://advisera.com/27001academy/blog/2016/07/11/how-to-prepare-for-an-iso-27001-internal-audit/
- Why is management review important for ISO 27001 and ISO 22301? https://advisera.com/27001academy/blog/2014/03/03/why-is-management-review-important-for-iso-27001-and-iso-22301/
2. Who is it that certifies us that we are ISO 27001 certified and provides the certification?
Organizations that issue certification are called certification bodies (a person cannot certify an ISMS), and a proper certification body must select according to your needs.
These articles can provide you further information:
- How to choose a certification body https://advisera.com/blog/2021/01/11/how-to-choose-an-iso-certification-body/
- Becoming ISO 27001 certified – How to prepare for certification audit https://advisera.com/27001academy/iso-27001-certification/
3. I also see that you have a course for lead auditor, what is the benefit of this certification?
The lead auditor course is recommended for those who want to work as a certification auditor for a certification body. For those who only want to audit his/her own certification, the internal auditor course is a better option.
This article will provide you a further explanation about the Lead Auditor course:
- What does ISO 27001 Lead Auditor training look like? https://advisera.com/27001academy/blog/2016/08/29/what-does-iso-27001-lead-auditor-training-look-like/
- ISO 27001 Internal Auditor training – Is it good for my career? https://advisera.com/27001academy/blog/2016/03/29/iso-27001-internal-auditor-training-is-it-good-for-my-career/
This material can also help you:
- ISO 27001:2013 Internal Auditor Course https://advisera.com/training/iso-27001-internal-auditor-course/
Comment as guest or Sign in
Feb 13, 2020