Question about non-compliance
What would be the consequence for non-compliance?
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
The consequences may vary depending on the type of the non-compliance, but broadly speaking, ISO 27001 related non-compliances can be related to:
- Information compromise (i.e., loss of confidentiality, integrity and/or availability)
- Loss of customer trust
- Violation of legal requirements (e.g., law, regulation or contract) that can lead to fines and/or legal actions
Regarding non-compliances identified during ISO 27001 certification/surveillance audit, they can lead to problems with the certification process.
These articles will provide you a further explanation about the impacts of non-compliances:
- Major vs. minor nonconformities in the certification audit https://advisera.com/27001academy/blog/2014/06/02/major-vs-minor-nonconformities-in-the-certification-audit/
- Practical use of corrective actions for ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2013/12/09/practical-use-of-corrective-actions-for-iso-27001-and-iso-22301/
These materials will also help you regarding the impacts of non-compliances:
- Preparing for ISO Certification Audit: A Plain English Guide https://advisera.com/books/preparing-for-iso-certification-audit-plain-english-guide/
- ISO Internal Audit: A Plain English Guide https://advisera.com/books/iso-internal-audit-plain-english-guide/
- Free online training ISO 27001:2013 Internal Auditor Course https://advisera.com/training/iso-27001-internal-auditor-course/
Comment as guest or Sign in
May 13, 2020