ISO27001:2013 Assessments Without Tears

Updated to reflect the changes in ISO27001:2013, this pocket guide is the ideal way to prepare all staff in an organisation for an ISO27001 audit. The audit process can be a daunting one as an auditor can direct questions at any employee within your organisation. Written in a clear plain style, this pocket guide offers a tried and tested briefing, and should be issued to staff in advance of the audit to help them prepare for the experience and be well equipped to answer questions when asked.This pocket book explains what an ISO 27001 assessment is, why organisations bother with them, and what individual staff should do and, perhaps as importantly, not do if an auditor chooses to question them.The book covers:What an assessment isWhy information security is importantWhat happens during an assessmentWhat to consider when answering an auditor';s questionsWhat happens when an auditor finds something wrongYour policies and how to prepareFurther information: who to askThis pocket book is the perfect tool to train everybody inside your organisation to play their part in your ISO 27001 assessment.