Search in ISMS Guides

Google
 

Monday, June 30, 2008

ISO 27001 Certification FAQ

What is certification?
ISO/IEC 27001 certification is the process by which an organization’s ISMS is examined against the ISO/IEC 27001 specification by an accredited certification body.

What is a certification body?
A certification body (also called a registration body, assessment and registration body, or registrar) is a third party that assesses and certifies that the ISMS of an organization meets the requirements of the standard.

Who accredits certification bodies?
Accreditation organizations accredit the competence of certification bodies to perform services in the areas of product and management system approval. These accreditation organizations are often, but not always national in scope.

What is the certification process?
The certification process includes:

1. Part 1 audit (also known as a desktop audit). Here the CB auditor examines the pertinent documentation.
2. Taking action on the results of the part 1 audit.
3. Part 2 audit (on site audit). Here the CB sends an audit team to examine your implementation of the reviewed, documented ISMS.
4. Correction of audit findings. Agreeing to a surveillance schedule.
5. Issuance of certificate. (Depending on the CB this can take a few weeks to several months.)

Following initial certification, the ISMS is subject to surveillance as specified by the CB, and then requires re-certification after three years.

From: www.atsec.com

47 comments:

ISO 27001 Certification said...

ISO 22000 formally specifies a management system that is intended to bring information security under management control. As per ISO 27001 information security system requirements the organization must design and implement a system for information security controls and other forms of risk treatment to address those risks that are deemed unacceptable. During our consultancy for ISO 27001 certification we examine the organization's information security risks, taking account of the threats, vulnerabilities and impacts.

Green TQM said...

Really useful stuff. Keep on posting more related topics like ISO 9001 Certification and IATF 16949 Certification. Waiting for your next update

Ansa Certifications said...

Very Nice blog! Thanks for sharing the informative article...

ISO 9712 training in Chennai
ISO 9712 training in Tamil Nadu

Unknown said...

Great Content! Information Security Management Systems It is an important topic!

Michael Smith said...

Amazing details given. Thank you

ISO 27001 Consultant

lithincruzz said...

Thank you so much for sharing this great blog. Very inspiring and helpful too.

ISO 27001 Requirement

Amith Sharma said...

Great post.I'm glad to see people are still interested of Article.Thank you for an interesting read........
ISO 27001 Lead Auditor Training

Sana Shren said...

Thanks for the information. Hope devotes will be careful after reading this post.Regards

ISO Lead Auditor Certification

Qdot International said...

Great post. It seems to be interesting and gave me a lot of information, Thank you for sharing it. I am looking forward to new articles.keep it up.
ISO 22301 Business Continuity Management System Consultancy in UAE.

James Williams said...

I believe there are many more pleasurable opportunities ahead for individuals that looked at your site

ISO Lead Auditor Course Online

harrishvijay said...

very nice blog. Thanks for sharing . ISO 27002 Certification in Bahrain

Amith Sharma said...

Good day. I was impressed with your article. Keep it up . You can also visit my site if you have time. Thank you and Bless you always.

ISO 27001 Certification

Arya Rishi said...

Report Bugs Topic tells about the bug reports of this blogs....

ISO 27001 Certification

Sana Shren said...

This post is really nice and informative. The explanation given is really comprehensive and informative..

ISO 22301 Certification

John Smith said...

I believe there are many more pleasurable opportunities ahead for individuals that looked at your site

ISO 27001 Certification

Michael Smith said...

Great reading and extremely comprehensive post. much covers everything

ISO 27001 Certification

Amith Sharma said...

Hi, thank you very much for help. I am going to test that in the near future. Cheers

ISO 27001 Certification Peru

Sana Shren said...


Thanks for sharing, I will bookmark and be back again

ISO 27001 Certification

James Williams said...

Good Blog, well descrided, Thanks for sharing this information.

ISO 27001 Lead Auditor Training

Jessy Shan said...

very informative a thank you for posting

ISO 27001 Lead Auditor Online Training

Robinsisoconsultancy said...

Robinsisoconsultancy.com are among the best ISO 9001 Consultancy Services in Dubai, Abu dhabi, Sharjah, Ajman & UAE providing you experienced, ISO Certification, ISO

Hafeezriyas said...

Thanks for sharing this post.
ISO 27001 certification Bahrain

harish said...

Thanks for sharing the nice and informative post with us. ISO 9000 Benefits

shineyourlightonline123 said...

Excellent read, Positive site, where did u come up with the information on this posting? I have read a few of the articles on your website now, and I really like your style. Thanks a million and please keep up the effective work.
Certificacao ISO 22301

Anonymous said...


iso 27001 certification

Very good article!! interesting and good to read. Thank you for sharing this trust worthy blog, keep sharing such good blogs.

Amith Sharma said...

Thanks for sharing your info. I really appreciate your efforts and I will be waiting for your further write.I like the post

ISO 27001 Certification
ISO 27001 Certification Cost

Anjali Kumari said...

I would definitely thank the admin of this blog for sharing this information with us. Waiting for more updates from this blog admin.
Certificacao ISO 27001

iqbalhak1110 said...

ISO 27001 Lead Auditor Course

afzalalam1110 said...

ISO 27001 certification

YASARARAFAT said...

Your post is so interesting to read. Good Luck for the upcoming update. ISO 27001 Consultants in Oman

Neha said...

I would definitely thank the admin of this blog for sharing this information with us. Waiting for more updates from this blog admin.
ISO 27001 certification in israel

Maira Khan said...

Nice post! It is really very helpful for us. If anyone want to know the details about
iso 27001 certification

Archana Kumari said...

Nice post. I learn something totally new and challenging on sites . It's always helpful to read content.
lead auditor certification in vietnam

Unknown said...

Nice informative post regarding ISO 27001. This Certification ensures the clients that their information is secured and immune to cyber-attacks. It provides necessary guidelines on how to create an effective information security management system (ISMS) in an organization.

Information security management system (ISMS)

mohamaf said...

It is really very helpful for us and I have gathered some important information from this blog... ISO 22301 Lead Auditor Training

Anonymous said...

Nice Blog

Anonymous said...

Nice Blogiso#9001

ISO Consultant said...

That's a really great post describes all the important points which are very useful to get ISO 27001 lead auditor training for Information Security Management System. Do you know ISO 27001 lead auditor training now available online? On https://www.punyamacademy.com/course/isms/iso-27001-lead-auditor-training

harish said...

Very informative. Thanks for sharing.

ISO certificate registration

RUBESH MARIA said...


It is really very helpful for us and I have gathered some important information from this blog


ISO 27001 Certification in Chennai

Iso registration said...

I found your blog and it was really useful as well as informative thanks for sharing such an article with us. We also provide services related to ISO REGISTRATION.

iso registration

Meena said...

Thank you so much for sharing this great blog. Very inspiring and helpful too.
ISO 9712 consultants in Tamil Nadu

Meena said...

Amazing details given. Thank you.



ISO 9712 certification

edicksjohnn said...

Member organizations of ISO collaborate themselves in the development and promotion of international standards for technology, scientific testing processes, working conditions, societal issues, Technical Standards, and more.iso 27001 certification

Kanishka said...

Thanks for sharing
certificazione iso 27001

edicksnelson said...

I found your blog and it was really useful as well as informative thanks for sharing such an article with us. We also provide services related to iso 22301 curso de auditor principal

edicksnelson said...

I found your blog and it was really useful as well as informative thanks for sharing such an article with us. We also provide services related to ISO 27001 Certification