Guest
ISO 27001 - frequency of recertification
Once certified for ISO 27001, how frequent does a recertification have to take place?
Assign topic to the user
If speaking about certification of organizations, surveillance visits must take place at least once a year, and the certificate is valid for 3 years. After the certificate expires, an organization can decide whether to go for the recertification, but this is not mandatory - this is something you do only if you want to keep the certificate.
This article can also help you: Surveillance visits vs. certification audits https://advisera.com/27001academy/knowledgebase/surveillance-visits-vs-certification-audits/
Comment as guest or Sign in
Jan 12, 2016
Jan 12, 2016
Jan 12, 2016