What to Prepare for the Audits

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Sign up with Google
Sign up with Apple
Sign up with Microsoft
View all SSO options

Already have an account? Sign In »

ISO 27001:2013 - Information Security Management Systems
Course
Time
7 hours 52 minutes
Difficulty
Intermediate
CEU/CPE
8
Video Transcription
00:01
less than 9.4.
00:03
What to prepare for the audience
00:08
in this video will go over some tips and tricks to prep for your audit.
00:18
If you have been keeping a neat, entirely repository off all the documents and evidence items in your ice mess throughout its life cycle so far, then great job. You probably don't need to do that much preparation
00:31
if you've been a one man I SMS team, and there are a bit off evidence and documents sitting with various people all over the organization, you probably need to do some preparation before the audits and get your stuff together.
00:44
Ensure that your top management representatives are informed of the audit and that they have time scheduled in their diaries to talk to the auditors.
00:52
They should be familiar with the Ice Amis,
00:55
its current state.
00:57
What the current culture towards it is
00:59
the current risk management process,
01:02
what your top risks are and so forth.
01:04
Top management must be able to demonstrate their commitment to an understanding off the ice mess.
01:12
Inform the rest of your organization as well, especially the personal who are involved in the ISMs in some way or another,
01:19
especially if they're areas fall directly within the ice mess scope.
01:26
A good idea as well is to have some refreshments, such as he
01:30
coffee and light snacks.
01:32
It creates a good and hospitable impression for the auditors.
01:38
So try to group information based on your closes.
01:42
Any information that pertains to clause for group that together somewhere that you know where to find it. And then it's easy, accessible and the same for all the clauses
01:53
have some sort of reference system so that it is easy to find evidence and artifact in minimal time.
02:00
There's nothing more awkward than sitting in a room with an auditor and struggling to find evidence
02:07
dedicated boardroom for the order and ensure that there are facilities such as a screen or projector for the order to to view the evidence,
02:16
communicate the order date with top management and the rest of the organization
02:29
to summarize.
02:30
In this video, we went over a couple of tips to help you prepare for your ice. 0, 27,001 Audits
Up Next
View All
Instructed By
Judy Winn

Judy Winn

CISO at NFA Solutions

Instructor
Similar Content
Kali Linux Fundamentals
Course
Kali Linux Fundamentals
4.12
If you’re interested in penetration testing and ethical hacking, then this Kali Linux course is ...
1CEUs
Application of the MITRE ATT&CK Framework
Course
Application of the MITRE ATT&CK Framework
4.29
This MITRE ATT&CK training is designed to teach students how to apply the matrix to ...
10CEUs
Microsoft Developing Microsoft SQL Server 2012 Databases
Virtual Lab
Microsoft Developing Microsoft SQL Server 2012 Databases
Prove your capabilities as an exceptionally skilled enterprise professional and work hands- on using Microsoft ...