Certification Process According

to the Standard ISO 27001

Audit Procedure ISOCA

ISO 27001 Information Security Management Systems

Every ISO 27001 audit consists of the following stages:

Opening Meeting
An opening meeting involving the client's management and responsible individuals for the functions or processes subject to the audit.

Communication During the Audit
The audit team designated by CO/SM regularly assesses the audit progress and exchanges information. The lead auditor assigns tasks to individual team members during the audit; any deficiencies are communicated to the client. If available audit evidence shows that the audit objectives are unattainable or a significant non-conformity is identified, the lead auditor informs the client and CO/SM.

Information Gathering and Verification
CO/SM uses interviews, process and activity observations, documentation and record review for information gathering and verification.

Identification and Recording of Audit Findings
Findings summarizing conformity and non-conformity are recorded by audit team members during the audit to enable a qualified certification decision or maintenance of certification. Auditors document opportunities for client's QMS improvement, deviations from specific requirements, which are discussed with the client.

Preparation of Audit Conclusions
Before concluding the audit, the audit team reviews the audit findings and any other relevant information obtained during the audit in relation to audit objectives and criteria, and classification of non-conformities. The final meeting involves a discussion about audit conclusions, and subsequently, necessary actions are identified. During the final meeting, attended by the client's management and, if appropriate, individuals responsible for functions or audited processes, audit conclusions are presented, including certification-related recommendations. Any non-conformities found during the audit are presented in a manner understandable to the client, and a timeline is agreed upon for non-conformity rectification.

Certification process procedures take into account specific aspects for different types of audits. This procedural guideline is available to CO/SM clients upon request.

For time optimization, we aim to conduct consultations via Skype, saving your time.

View Certification Procedure

ISO Certification Procedure Scheme

ISO 9001 Quality Certificate
ISO 45001 Safety Certificate
ISO 37001 Anti-Corruption Certificate
ISO 22001 Food Safety Certificate
ISO 20000-1 IT Service Certificate
ISO 14001 Environmental Certificate
ISO 22301 Organizational Continuity Certificate
ISO 13485 Healthcare Facility Certificate
ISO Certification Authority

© 2011 ISOCA - ISO Certification Authority | All rights reserved
Audit and certification procedure ISO 27001 certificate rating: 4.94/ 5 total of 36 ratings | Operator: COMPANY CONSULTING SLOVAKIA LTD, 128 City Road, London, United Kingdom, EC1V 2NX