Expert Advice Community

Guest

ISO 27001 - Enquiry

  Quote
Guest
Guest user Created:   Nov 21, 2022 Last commented:   Nov 21, 2022

ISO 27001 - Enquiry

Can you confirm if during stage 1 of a certification process, does an organisation certified Lead Implementer or Auditors within the organisation before the organisation is certified and which clause demands this.

Secondly, can an organisation outsource the roles of ISO 27001 LA and LI and be successfully certified?

I will be grateful to have your feedback.

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Nov 21, 2022

1 - Can you confirm if during stage 1 of a certification process, does an organisation certified Lead Implementer or Auditors within the organisation before the organisation is certified and which clause demands this.

I’m assuming you are asking if certified Lead Implementers or auditors need to be present in the organization as certification criteria.

Considering that ISO 27001 does not prescribe the role of lead implementer so the presence of a lead implementer is not a requirement for certification. Regarding the auditor role, the standard defines it in clause 9.2, but only requires that the internal audit needs to be performed by a person with proper competency (clause 7.2 competence), so the presence of auditors is not a requirement for certification (the certification auditor will only check if audits were performed by auditors with proper competencies).

For further information, see:

2 - Secondly, can an organisation outsource the roles of ISO 27001 LA and LI and be successfully certified?

I will be grateful to have your feedback.

ISO 27001 does not prescribe that auditors and implementers need to be employees of the organization, so it is acceptable to outsource these roles.

For further information, see:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Nov 20, 2022

Nov 20, 2022

Suggested Topics

Guest user Created:   Jun 07, 2022 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 Enquiry

Guest user Created:   Jan 12, 2016 ISO 27001 & 22301
Replies: 1
0 0

Becoming ISO 27001 auditor