£2,050.00 excl VAT

Outsource your internal audit to a qualified auditor with deep experience of ISO 27001 and the audit process, and gain the assurance you need to ensure you meet your clients’ and stakeholders’ demands.

This service consists of two separate audit days spread over one year.

Please note, the price quoted is for SMEs with up to 50 employees, based upon a single main site in mainland UK. If you have specific requirements, please contact us for a personalised quote.

Description

Remove the guesswork from your ISO 27001 audits with an experienced auditor on your side
Implementing an ISO 27001-compliant ISMS requires ongoing maintenance and review to meet the Standard’s requirements in clauses 8 and 9. The internal audit is an essential element of this process, which must be carried out as described in clause 9.2 of ISO 27001, and should be conducted at planned intervals.

Without the experience of a seasoned audit professional, the internal audit can be challenging to undertake, especially when the organisation is new to ISO 27001.

Get a specialist on board to conduct your internal audit and leave all the checking and verification to us.
Our auditors are qualified and experienced, with both knowledge of current audit practices and practical implementation experience, enabling you to benefit from additional advice.

You will receive a detailed audit report highlighting any non-conformities identified, which will help you meet the Standard’s requirements for an objective and impartial audit process. The report will provide the required assurance as to whether the ISMS continues to conform to management’s requirements and to those of ISO 27001.

What does this service cover?
Audit day one: audit of conformance to requirements in clauses 4-10 of ISO 27001:2013;
Audit day two: audit of selected ISMS controls and control effectiveness.
Your internal audit will include the following:

  • Document review;
  • Follow-up – a review of whether all the corrective actions raised during any previous audits have been closed;
  • Organisational ‘walk-through’ to observe the implementation of management system requirements;
  • Interviews with relevant staff;
    The production of an internal audit report, ready for management review, which presents a summary of all the non-conformities found.