ISO-IEC-27001 Lead Auditor V2

Below is Purpose of "Integrity", which is one of the Basic Components of Information SecurityA . the property that information is not made available or disclosed to unauthorized individualsB . the property of safeguarding the accuracy and completeness of assets.C . the property that information is not made available or...

DRAG DROP The following options are key actions involved in a first-party audit. Order the stages to show the sequence in which the actions should take place. View AnswerAnswer: Explanation: The correct order of the stages is: Prepare the audit checklist Gather objective evidence Review audit evidence Document findings Audit...

Integrity of data meansA . Accuracy and completeness of the dataB . Data should be viewable at all timesC . Data should be accessed by only the right peopleView AnswerAnswer: A Explanation: Integrity of data means accuracy and completeness of the data. Integrity is one of the three main objectives...

You are an ISMS audit team leader tasked with conducting a follow-up audit at a client's data centre. Following two days on-site you conclude that of the original 12 minor and 1 major nonconformities that prompted the follow-up audit, only 1 minor nonconformity still remains outstanding. Select four options for...

Which two of the following phrases are 'objectives' in relation to a first-party audit?A . Apply international standardsB . Prepare the audit report for the certification bodyC . Confirm the scope of the management system is accurateD . Complete the audit on timeE . Apply Regulatory requirementsF . Update the...

Which two of the following phrases would apply to 'check' in the Plan-Do-Check-Act cycle for a business process?A . Making improvementsB . Managing changesC . Verifying trainingD . Resetting objectivesE . Updating the Information Security PolicyF . Auditing processesView AnswerAnswer: CF Explanation: The two phrases that would apply to ‘check’...

DRAG DROP As the ISMS audit team leader, you are conducting a second-party audit of an international logistics company on behalf of an online retailer. During the audit, one of your team members reports a nonconformity relating to control 5.18 (Access rights) of Appendix A of ISO/IEC 27001:2022. She found...

You are conducting an ISMS audit in the despatch department of an international logistics organisation that provides shipping services to large organisations including local hospitals and government offices. Parcels typically contain pharmaceutical products, biological samples, and documents such as passports and driving licences. You note that the company records show...

DRAG DROP Please match the roles to the following descriptions: To complete the table click on the blank section you want to complete so that it is highlighted in red, and then click on the applicable test from the options below. Alternatively, you may drag and drop each option to...

You are an experienced ISMS audit team leader providing guidance to an ISMS auditor in training. They have been asked to carry out an assessment of external providers and have prepared a checklist containing the following activities. They have asked you to review their checklist to confirm that the actions...