ISO27001 Security Project Management Audit Checklist
Download free ISO27001 Security Project Management Audit Checklist. This security checklist covers:
1. Determine through interviews with IT personnel if a separate security administration function has been established.
2. Determine through interviews with IT personnel, review of IT policies and procedures manuals, and IT job descriptions if training programs have been established for all personnel for areas such as Organizational security policies, Disclosure of sensitive data, Operations Management, Access privileges to IT resources, Reporting of security incidents, Naming conventions for user passwords
3. Determine if formal policies de. ne the organization’s information security objectives and the responsibilities of employees with respect to the protection and disclosure of informational resources. Agreement to these policies should be evidenced by the signature of employees.
4. Determine if procedures and responsibility for the maintenance of user IDs and access privileges in the case of termination or transfer are defined and performed on a regular basis.