Guest user Created: May 31, 2019 Last commented: May 31, 2019

Surveillance audit schedule

Please let me know if there is a list of what is being audited in the audit after a year by the certification house. I mean auditing one year after ISO 27001 has been introduced. What is being done and checked or is it individually, depending on the auditor's assessment?We are smaller company (approx.10 employees).

0 0

Assign topic to the user

Select user

Expert

Rhand Leal May 31, 2019

Answer:

After a successful certification audit, the certification auditor must provide the organization with a general agenda for the surveillance audits, which will display the intended audits for the surveillance cycle. Near each surveillance audit the certification auditor must align the details of the audit with the organization. So, in short the organization must have an idea of the scope of the next audit.

Considering the size of your organization, most probably all the scope will be audited on each surveillance audit, but you have to check this information with your certification body.

For further information see:

- Surveillance visits vs. certification audits https://advisera.com/27001academy/knowledgebase/surveillance-visits-vs-certification-audits/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

May 31, 2019

Expert Advice Community