Description

In this episode of InfoSec Insider, Scott Lloyd, Senior Consultant at URM, offers key advice and guidance on the ISO 27001 certification process, how organisations can ensure they are prepared for a smooth and successful certification assessment.  Scott leverages his extensive experience in the field of information security to discuss:

• Common misconceptions about certification
• The ‘must-have’ documentation organisations need to have in place ready for their Stage 1 audit
• The Stage 2 audit, the difference between minor and major nonconformities and how they affect certification
• How organisations should handle minor nonconformities so that they do not become majors in the future
• The 3-year certification cycle and Continual Assessment Visits (CAVs)

Learn more about this topic: https://www.urmconsulting.com/blog/iso-27001-how-certification-works

If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here: https://ratethispodcast.com/infosecinsider      

You can find more episodes of InfoSec Insider here: https://urmconsulting.com/podcasts      

Brought to you by URM, the UK’s leading information and cyber security specialists.