Get 2 Documentation Toolkits for the price of 1
Limited-time offer – ends March 28, 2024

Expert Advice Community

Working from home - Laptop audit

  Quote
Created:   Nov 11, 2020 Last commented:   Nov 11, 2020

Working from home - Laptop audit

It is difficult to handle some required tasks which we should carry out to maintain ISO27001 when working from home. Example: Laptop audit What’s the impact? What is the way to handle it?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Nov 11, 2020

 1 - What’s the impact?

Answer: A remote internal audit is possible, provided that required evidence of conformance does not need the physical presence of the auditor on-site. So for a precise evaluation of the impact you need to identify the volume of on-site related evidence you need (probably most of them will be related to physical security).

For example, to audit the conformance of a laptop used when working from home, the auditor can audit the laptop's access logs against the authorized access rights (by auditing corporate servers that host the accessed information systems), or he can remotely access the laptop to audit its settings.

2 - What is the way to handle it?

Answer: For situations where it is necessary to make on-site observations (e.g., to audit the conformance of physical security controls), the audited company should provide evidence of such controls remotely (e.g. through photographs, plans, maps, etc.).

For additional information, see:
- Free webinar – How to perform an internal audit remotely https://advisera.com/27001academy/webinar/remote-internal-audit-free-webinar-on-demand/
- Checklist of cyber threats & safeguards when working from home (PDF) https://info.advisera.com/27001academy/free-download/checklist-of-cyber-threats-and-safeguards-when-working-from-home

 

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Nov 11, 2020

Nov 11, 2020

Suggested Topics

Guest user Created:   Jun 14, 2021 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 query

Guest user Created:   Mar 01, 2023 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 query

Ash Created:   Jan 21, 2024 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 Internal Audits