Cases
Internal Audit Project – ISO 27001, ISO 27701 & ISO 22301
Project Scope
- ISO/IEC 27001 – ISMS: Review ISMS scope, policies, and controls
- ISO/IEC 27701 – PIMS: Review PIMS scope and privacy controls
- ISO 22301 – BCMS: Review BCMS framework, BIA, and continuity plans
MILESTONE
Project Started
Milestone 1
Document Review
Document Review
Milestone 2
Internal Audit Execution
Internal Audit Execution
Milestone 3
Audit Findings & Reporting
Audit Findings & Reporting
End of Project
Project Objective
- Verify effectiveness of information security and privacy controls
- Identify nonconformities and improvement opportunities
- Verify readiness of business continuity arrangements
- Ensure continuity plans meet standard requirements
Project Output
- ISMS, PIMS, and BCMS Internal Audit Report
- Nonconformity and corrective action records
- Privacy control findings for ISO 27701
- BIA/BCP audit findings for ISO 22301
- Consolidated internal audit summary
- Corrective action plan
- Management review input