ISO 27001 Auditing

Your processes keep you secure

The true purpose of internal audits for ISO 27001 is to ensure that your management system is effective.

Your Processes are Your Most Valuable Assets

The important thing about a 27001 internal audit is that the purpose of the audit is to ensure that the management system is effective. It is not specifically about checking security. The management system is supposed to ensure that security is effective and thus so long as the management system is working then the organization should be appropriately secure. It’s not that security is not looked at, after all the state of security was “caused” by the management system and thus it will reflect its health. But intensive security auditing, possibly appropriate for other reasons, is not the goal of ISO 27001.

Cavendish Scott has 25 years of experience auditing management systems. We are process experts, have wide-ranging experience, and understand the needs of information security. We provide objective evidence of problems, alerting management before the ISO auditor finds issues but we also provide subjective suggestions based on experience and supported by evidence of improvements, streamlining, or strengthening conformance. We save you the problem of finding internal resources, training them and still worrying about how thorough and effective they are. We provide the assurance that your ISO certification is safe and that your organization is appropriately secure. Contact us to find out how you can get that assurance.

We Provide

  • Precise, careful auditing to ensure thorough and effective management systems
  • Professional, skilled, and knowledgeable auditors with an appreciation of the impacts of failures
  • Attention to detail that identifies potential systemic issues before the external audit date
  • Confidence in the system to assure management their organization is safe
  • A positive balance between the business needs of the organization with the need to operate support management systems
  • A focus on continual improvement that brings the experience of many management situations leading to tangible growth in the operation of ISO systems

Organizations frequently outsource critical activities to professional subcontractors. Cavendish Scott provides internal auditing for hundreds of organizations, thus giving management confidence and assurance of continued certification while keeping everyone in the organization safe.

You've Got Security. How Are Your Processes?
This was by far the best auditing class I've attended and should we need more students trained, Cavendish Scott will be our choice for trainers. The interaction and exercises were phenomenal and the fact that we got audits completed that we can count towards our yearly schedule was a definite plus.
SGCorporate Director Product Assurance, Aerospace services organization
The [lead] auditor class was absolutely one of the best I’ve ever had the pleasure of attending and know Cavendish will be invaluable in the [ISO] process.
DSQuality Manager, Metal Processing and Manufacturing Organization, Colorado
Thank you all again for coming out and for all that you do for us. Despite a few challenges, we really do appreciate the value that your audit adds to our business … and that is not just from me; I hear it from other members of the management team.
[AS9100 Auditing Client]Manager – Quality Systems, Aircraft Maintenance, Refitting, Services
It would have been a difficult course for most of us if it weren't for your patience and teaching skill.  You have made us all better stewards of the taxpayer's money by making us proficient auditors.
[Training Client]Quality Assurance, Naval Shipyard
This course gave me an excellent overview of the ISO 9001 standard and I now have an appreciation for and solid knowledge of the standard, its intent, and how to audit against it.
Documentation Coordinator & AuditorChemical Test Standards Laboratory
The instructor tailored the course as much as he could to the requests and experience of the group present, which made it much more valuable.
Environmental Health and Safety ManagerDefense Microelectronics Agency
This is actually the best class I have attended. Instructor was amazing and very knowledgeable.
Top ManagerIntegrated Circuit Design and Manufacturing Company
There were lots of real life examples shared on very open discussions and the workshop feeling where all could contribute was very effective.
[Training Client]Systems Analyst, Data Storage Products and Services Company
Previous
Next
Privacy Policy | Environmental Policy  | Terms & Conditions
©2023 Cavendish Scott.
Scroll to Top