Q: 1
Which two of the following options for information are not required for audit planning of a
certification audit?
Options
Discussion
Pretty sure the question is just after what you don't need for initial audit prep, so C and E fit. The rep's work experience (C) and financials (E) aren't standard inputs according to ISO 27001. Docs, sampling plan, checklists are core. I could be missing some nuance but this lines up with my study notes.
C/E? Not totally sure but management rep's experience and financials aren't part of audit prep requirements. Someone confirm?
Probably C and E, that matches what shows up in official guides. Saw a similar question in an official practice test.
A is wrong, CE. ISO 27001 doesn't require you to look at the rep’s management experience or the org’s financials when planning the audit. Anyone got a different take on this?
Option D
CE tbh, but if the audit involved financial due diligence (rare for 27001) E could flip needed. Seen similar on practice.
CE tbh, audit plan doesn't touch financials or the rep's background for ISO 27001.
Don't think it's D, audit checklists are always part of planning. C and E make more sense here.
C/E? Leaning toward those since the audit planning shouldn't need financial statements or info about the rep's work history. The focus is always on ISMS docs, scope, and sampling plans I think. Open to other ideas though.
C/E? Seen this kind of question before and honestly it's annoying since audit planning never asks for the rep's work experience or financial statements. Pretty sure it's those two, but the wording always trips me up.
Be respectful. No spam.
