ISO27001/ISO27002 A Pocket Guide, 2nd edition

CHAPTER 4: CERTIFICATION PROCESS

ISO27001 provides a specification against which an organisation’s ISMS can be independently audited by an accredited certification body. If the ISMS is found to conform to the specification, the organisation can be issued with a formal certificate confirming this.

Certification bodies

Certification is carried out by independent, accredited certification bodies. These are called different things in different countries, including ‘registration bodies’, ‘assessment and registration bodies’, ‘certification/registration bodies’ and ‘registrars’. Whatever they are called, they all do the same thing and are subject to the same requirements.

An accredited certification body is one that has demonstrated to a national accreditation ...

Get ISO27001/ISO27002 A Pocket Guide, 2nd edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

ISO27001/ISO27002 A Pocket Guide, 2nd edition by Alan Calder

CHAPTER 4: CERTIFICATION PROCESS

Certification bodies

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly