What to Prepare for the Audits

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
or

Already have an account? Sign In »

Time
7 hours 56 minutes
Difficulty
Intermediate
CEU/CPE
8
Video Transcription
00:01
less than 9.4.
00:03
What to prepare for the audience
00:08
in this video will go over some tips and tricks to prep for your audit.
00:18
If you have been keeping a neat, entirely repository off all the documents and evidence items in your ice mess throughout its life cycle so far, then great job. You probably don't need to do that much preparation
00:31
if you've been a one man I SMS team, and there are a bit off evidence and documents sitting with various people all over the organization, you probably need to do some preparation before the audits and get your stuff together.
00:44
Ensure that your top management representatives are informed of the audit and that they have time scheduled in their diaries to talk to the auditors.
00:52
They should be familiar with the Ice Amis,
00:55
its current state.
00:57
What the current culture towards it is
00:59
the current risk management process,
01:02
what your top risks are and so forth.
01:04
Top management must be able to demonstrate their commitment to an understanding off the ice mess.
01:12
Inform the rest of your organization as well, especially the personal who are involved in the ISMs in some way or another,
01:19
especially if they're areas fall directly within the ice mess scope.
01:26
A good idea as well is to have some refreshments, such as he
01:30
coffee and light snacks.
01:32
It creates a good and hospitable impression for the auditors.
01:38
So try to group information based on your closes.
01:42
Any information that pertains to clause for group that together somewhere that you know where to find it. And then it's easy, accessible and the same for all the clauses
01:53
have some sort of reference system so that it is easy to find evidence and artifact in minimal time.
02:00
There's nothing more awkward than sitting in a room with an auditor and struggling to find evidence
02:07
dedicated boardroom for the order and ensure that there are facilities such as a screen or projector for the order to to view the evidence,
02:16
communicate the order date with top management and the rest of the organization
02:29
to summarize.
02:30
In this video, we went over a couple of tips to help you prepare for your ice. 0, 27,001 Audits
Up Next
ISO 27001:2013 - Information Security Management Systems

The ISO 27001:2013 - Information Security Management Systems course provides students with insights into the detail and practical understandings meant by the various clauses in the ISO 27001 Standard.

Instructed By