by country or language
A well-structured information security management system according to ISO 27001 is the basis for the effective implementation of a holistic information security strategy. The implementation of the measures (controls) in Annex A of the standard is particularly valuable in practice.
Our experts have supplemented this already very practice-oriented Annex A with audit questions, suitable evidence and exemplary key figures for selected measures. Internal auditors can thus specifically check whether and how certain measures have been implemented within their organization and identify any need for action.