Assign topic to the user
I would like to ask you about 'Use of Logo' in ISO 27001:2013. Actually, we're scheduled for our Final Surveillance/Transition audit in a week's time and I received the audit plan from the Auditor. This is what he has mentioned in the Audit plan.
ISMS Transition
ISMS Elements (Management Review, Internal Audit, Risk Management, Use of Logo, Corrective Action) and Discussion of all outstanding issues from previous visits.
I would like to know what is this 'Use of Logo' as I didn't find such thing in ISO 27001:2013 (May be I missed it). What controls are related to this and how can we ensure compliant to this ISMS element.
Answer:
Use of logo is something the auditors must check during the surveillance visit - they need to check if the certification logo for ISO 27001 certificate was used in appropriate places. For example, if only IT department was ISO 27001 certified, your company cannot use the certification logo in the context of e.g. the manufacturing facility.
Maybe this article about the questions that an auditor can ask you in the audit can be interesting for you Which questions will the ISO 27001 certification auditor ask? : https://advisera.com/27001academy/blog/2015/07/20/which-questions-will-the-iso-27001-certification-auditor-ask/
You can also review this checklist of implementation to check your implementation ISO 27001 implementation checklist : https://advisera.com/27001academy/knowledgebase/iso-27001-implementation-checklist/
Comment as guest or Sign in
Jan 12, 2016