SHARE THIS TOPIC  
Ask a Question
Q:

Surveillance audit

What is a surveillance audit?

compliance icon GRC Q&A
All Replies

Viewing 0 reply threads

  • Surveillance Audits are an ISO term. An ISO 27001 audit is done on a 3 year cycle. The first year, is what is called a full audit, wherein the ISO auditor will review and test the effectiveness of all ISO 27001 controls. The second and the third year are called the “surveillance audits” as the auditor looks at a subset of controls from the ISO 27001 framework.

Viewing 0 reply threads

Join the conversation

OR