In this episode of InfoSec Insider, Scott Lloyd, Senior Consultant at URM, offers key advice and guidance on the ISO 27001 certification process, how organisations can ensure they are prepared for a smooth and successful certification assessment.  Scott leverages his extensive experience in the field of information security to discuss:

• Common misconceptions about certification


• The ‘must-have’ documentation organisations need to have in place ready for their Stage 1 audit


• The Stage 2 audit, the difference between minor and major nonconformities and how they affect certification


• How organisations should handle minor nonconformities so that they do not become majors in the future


• The 3-year certification cycle and Continual Assessment Visits (CAVs)

Learn more about this topic: https://www.urmconsulting.com/blog/iso-27001-how-certification-works

If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here: https://ratethispodcast.com/infosecinsider      

You can find more episodes of InfoSec Insider here: https://urmconsulting.com/podcasts      

Brought to you by URM, the UK’s leading information and cyber security specialists.