• Oxford: +44 (0)1865 877830 
  • Manchester: +44 (0)161 713 0176 
  • Edinburgh: +44 (0)131 541 0118 
  • New York: +1 646-781-7580 
  • Bucharest: +40 316 301 707 
  • Tokyo: +81 (3) 4588 8181 

ISO 27001 Internal Audit

You are here

Regular internal audits of your Information Security Management System (ISMS) are required as part of compliance to the information security standard ISO 27001.

The standard specifies that the organization shall conduct internal ISMS audits at planned intervals to determine if the ISMS conforms to the standard and requirements, is effective, and performs as expected. The standard also specifies that selection of auditors shall ensure objectivity and impartiality.

The Dionach ISO 27001 Internal Assessment service provides a means for you to undertake these ISMS audits if you do not have the internal resources to do so, and provide the added benefit of being independent and hence providing a more objective view.

As part of a Dionach ISO 27001 Internal Audit, you will receive an audit plan followed by an inspection visit where an experienced ISO 27001 auditor will review your existing policies, procedures and practices within the ISMS scope. The auditor will then produce a report and explain the main issues at a closing meeting.

The sections of the standard that Dionach will review as part of an ISO 27001 Internal Audit are:

  • Likely scope of certification
  • Security policy, risk assessment, statement of applicability
  • Organisation of information security
  • Asset management
  • Human resources security
  • Physical and environmental security
  • Communications and operations management
  • Access control
  • Information systems acquisition, development and maintenance
  • Information security incident management
  • Business continuity management
  • Compliance

The ISO 27001 Internal Audit report will provide a list of the main sections of the ISO 27001 standard together with identification of any non-conformances and suggested corrective actions.

We prefer to deliver this ISO 27001 Internal Assessment report face to face to enable discussion and full comprehension of the issues identified. We also make our auditors available for further meetings and discussions with those who are tasked with undertaking corrective actions.

Contact us now for a free no-obligation initial consultation

For further information on how Dionach carry out ISO 27001 Internal Auditing, read our ISO 27001 Internal Audit Case Study.