This pocket book explains what an assessment is, why organisations bother with them, and what individual staff should do and, perhaps as importantly, not do if an auditor chooses to question them. The fact that your organisation has made this available to you suggests you are seeking, or have, ISO 27001 certification. It is therefore worth reading through this short introduction to understand: what an assessment is; why information security is important; what happens during an assessment; what to consider when answering an auditor's questions; what happens when an auditor finds something wrong; your policies and how to prepare; further information: who to ask; and finally there is an appendix explaining some of the terms used in this pocket book.
- ISBN10 6612529024
- ISBN13 9786612529023
- Publish Date 7 March 2007 (first published 1 March 2007)
- Publish Status Active
- Out of Print 29 February 2012
- Publish Country US
- Imprint It Governance Ltd
- Format eBook
- Pages 22
- Language English