Scribd Logo
Upload

Welcome to Scribd!

  • 1.3 ISO 27001 Pre Course Test

    Uploaded by

    Srishti Tripathy
    6 views2 pages
    This document provides a 15 question true/false quiz to assess understanding of ISO 27001:2022 requirements for information security management systems. The quiz covers topics such as scope determination, risk assessment frequency, responsibilities of internal auditors, and requirements for documenting audit results, corrective actions, and management reviews. Delegates are instructed to indicate whether each statement is true or false, and to note the relevant ISO 27001 clause number for certain statements. The quiz is intended to help prepare delegates for an ISO 27001 training course on requirements for establishing and maintaining an ISMS.

    Original Description:

    Original Title

    1.3 ISO 27001 Pre Course test

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides a 15 question true/false quiz to assess understanding of ISO 27001:2022 requirements for information security management systems. The quiz covers topics such as scope determination, risk assessment frequency, responsibilities of internal auditors, and requirements for documenting audit results, corrective actions, and management reviews. Delegates are instructed to indicate whether each statement is true or false, and to note the relevant ISO 27001 clause number for certain statements. The quiz is intended to help prepare delegates for an ISO 27001 training course on requirements for establishing and maintaining an ISMS.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    6 views2 pages

    1.3 ISO 27001 Pre Course Test

    Uploaded by

    Srishti Tripathy
    This document provides a 15 question true/false quiz to assess understanding of ISO 27001:2022 requirements for information security management systems. The quiz covers topics such as scope determination, risk assessment frequency, responsibilities of internal auditors, and requirements for documenting audit results, corrective actions, and management reviews. Delegates are instructed to indicate whether each statement is true or false, and to note the relevant ISO 27001 clause number for certain statements. The quiz is intended to help prepare delegates for an ISO 27001 training course on requirements for establishing and maintaining an ISMS.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 2

    Handout

    1.3 Pre Course ISO 27001 Test Bureau Veritas Certification

    The objective of this exercise is to assess understanding of Information security


    management system and requirements of ISO/IEC 27001:2022

    Handouts and Material


    The following material must be issued to delegates for this exercise:

     Relevant documents from the Pre-course reference materials.

    Time allocated (Indicative)

    Performance: 25 minutes

    The TASK:-

     The test contains 15 statements related to ISO/IEC 27001:2022


     Delegates must read statements carefully and decide whether statements are
    true or false.
     Answer should be indicated by a “”Cross” or a tick mark” in the appropriate box.
     Also indicate the relevant Clause Number of ISO 27001:2022 Standard

    Nov 2022 PR 373: ISMS ISO 27001:2022 Lead Auditor Training Course (2551) 1 of 2
    Handout
    1.3 Pre Course ISO 27001 Test Bureau Veritas Certification
    ISO 27001 Quiz

    STATEMENTS True False


    1 While determining its ISMS scope the Organisation 4.3 b
    shall consider requirements of interested parties
    2 Resources required for achieving information
    security objectives shall be determined. Cl. 6.2 i
    3 Information security risk assessment shall be
    performed every six months 8.2
    4 Corrective Action is for eliminating the cause of a
    nonconformity and to prevent recurrence Cl. 10.2

    5 Employees shall be aware of implications of not Cl. 7.3 c


    conforming with ISMS requirements
    6 All information security risks identified throughout
    Cl. 6.1.3
    an organisation shall be eliminated
    7 Statement of Applicability shall include justification Cl.6.1.3d
    for exclusion of controls
    8 Internal ISMS Audits can be conducted in different
    departments/ areas at different frequencies. N/A
    9 Residual information security risks shall be
    accepted by the internal auditor Cl. 6.1.3 f
    10 Results of management review shall be Cl. 9.3.3
    documented
    11 Responsibility for external communication relevant Cl. 7.4 d
    to the ISMS shall be determined
    12 Effectiveness of all Information security controls
    Cl. 9.1 a
    shall be measured
    13 Results of corrective action shall be documented Cl. 10.2
    14 Internal auditors are responsible to take action to
    eliminate non-conformities identified by them. 10.2, 9.2
    15 Auditors assigned for performing internal audits
    Cl.9.2, 7.2
    shall be competent to perform their tasks
    Delegate name:
    Srishti Tripathy
    Total marks :

    Nov 2022 PR 373: ISMS ISO 27001:2022 Lead Auditor Training Course (2551) 2 of 2

    You might also like