1 / 15

Closing Meeting PPT Sample ISO27001

This is a sample presentation to conduct Closing meeting for ISO27001 audit. Closing meeting minutes for ISO27001 focus on<br>Audit process<br>Scope of ISO27001 audit<br>Audit findings <br>Non disclosure <br>Appeal process against non-compliances

cyber24x7
Download Presentation

Closing Meeting PPT Sample ISO27001

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Closing Meeting Stage2 Audit ISO 27001:2013 Sample Audit Report ISO 27001 www.cybersecurityguide.in Varinder Kumar CISA, LA 27001, CEH, CCE, MBA @cyber24x7

  2. Management Appreciation • Thanks to the Management of CyberSecurityGuide for • Providing <The Auditing Company> an opportunity to be your service partner • Providing full co-operation and facilities for audit • Arranging the auditees and guides as per audit schedule

  3. Auditee Team Appreciation • Thanks to the auditees for • Open Participation • Active participation of the teams resulting in synergy • Availability as per audit plan , ensuring timely completion • Transparency and sharing evidences for conclusion of the control validation • Receptiveness during audit • Efficient Information provision

  4. Noteworthy Efforts • ISMS Framework Documentation • Regular ISMS Trainings • Planned VAPT exercises with in-depth coverage of assets, closure of identified vulnerabilities. • Information Security Project Management to measure security risks during implementation of technology stack • Effectiveness of IT controls is tracked during internal audits • Effective cross functional Internal Audits across organization with certified internal auditors

  5. Scope of Certification • The management of information security applies to IT Data Centre, IT Infrastructure and SAP applications of CyberSecurityGuide Group located at the Corporate Office, Bangalore, providing IT services like Server Management, Network devices management, SAP Applications & Database Management, IT Security and Helpdesk Management and Business Continuity Planning and Disaster Recovery services at Disaster recovery centre located at Chennai. This is in accordance with the Statement of Applicability V7.0 dated 7th April, 1983

  6. Assessment Criteria • ISO 27001:2013 • Applicable legal & other requirements. • CyberSecurityGuide Group’s Own requirements. • Interested Parties requirements.

  7. Assessment Team • Team Leader : Varinder Kumar • Team Member : Akash Singal • Team Member : Narendera Modi

  8. Disclaimer Please do not consider these findings as Performance Indicators of • An individual • A Department / Process / Account /Contractual engagement Reason • This is a sample based audit so “Sampling Limitations” exist. Audit outcomes are based on the sample selected by the auditor. • Compliance does not equal security or continuity or resilience but non-compliance equals risk. • Auditors perform their duty without any prejudices against anyone and there are no targets set for auditors to raise non-compliances.

  9. Audit Findings Sample Audit Report ISO 27001 www.cybersecurityguide.in

  10. Summary Of Findings • No Major deviations found during assessment • Findings recorded are • Opportunity for Improvements – 3 • Non Conformities - 2

  11. Audit Result We are pleased to recommend the CyberSecurityGuide Group for Certification of ISMS Certificate

  12. Confidentiality • Audit Findings, Records, Audit Notes, etc. Shall not be divulged to any third party. • No sensitive information is collected or recorded by auditors. • All Auditors have signed an NDA with <The Auditing Company> • <The Auditing Company> has signed an NDA with your organization • We are governed by Accreditation Boards & Statutory / Regulatory Authorities, and if there is any requirement, then we will obtain written permission from your management prior to providing any information.

  13. Appeals Procedure • Appeals procedure against audit decision • Independent Review of audit report • Non-conformities if found unjust are revoked

  14. Thank You

More Related