Audit methods can be either with or without interaction with individuals representing the auditee. Which two of the following methods are with interaction?
A.
Sampling (e.g. products)
B.
Observing work performed via live video streaming
C.
Reviewing checklists with auditee
D.
Checking legal compliance with local authorities
E.
Conducting interviews
F.
Analysing documents provided in advance of the audit
According to the PECB Candidate Handbook for ISO/IEC 27001 Lead Auditor, audit methods can be classified into two categories: with or without interaction with individuals representing the auditee (page 12). Audit methods with interaction include reviewing checklists with auditee and conducting interviews, as they involve direct communication and feedback from the auditee. Audit methods without interaction include sampling (e.g. products), observing work performed via live video streaming, checking legal compliance with local authorities, and analysing documents provided in advance of the audit, as they do not require any dialogue or exchange with the auditee. References: PECB Candidate Handbook for ISO/IEC 27001 Lead Auditor, page 12.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit