You are previewing ISO27001 Assessments Without Tears.
O'Reilly logo
ISO27001 Assessments Without Tears

Book Description

The audit process can be a daunting one as an auditor can direct questions at any employee within your organisation. Written in a clear plain style, this pocket guide offers a tried and tested briefing, and should be issued to staff in advance of the audit to help them prepare for the experience and be well equipped to answer questions when asked.

This pocket book explains what an ISO 27001 assessment is, why organisations bother with them, and what individual staff should do and, perhaps as importantly, not do if an auditor chooses to question them.

The book covers:

  • What an assessment is
  • Why information security is important
  • What happens during an assessment
  • What to consider when answering an auditor';s questions
  • What happens when an auditor finds something wrong
  • Your policies and how to prepare
  • Further information: who to ask

This pocket book is the perfect tool to train everybody inside your organisation to play their part in your ISO 27001 assessment.