ISO27001:2022 Technical Controls Gap Internal Audit
This service is an internal audit of the technical controls specified under ISO/IEC27001:2022.
(1) The audit will focus on new technical controls you select. Please add applicable controls based on your Statement of Applicability (SOA). (2) It will be conducted remotely using our assessment questionnaire (see 'More Details' section) (3) The Internal Audit will comprise the following activities: (a) A 30 minute introductory web conference with participants (b) You providing evidence to allow us to assess conformance, within 10 business days of receiving the assessment questionnaire (c) An internal audit report, within 15 business days of the assessment questionnaire being fully completed. The report will detail (i) Any non-conformities found (ii) Any corrective actions required
Please note the following
* This service is intended only for organisations already certified under the ISO/IEC27001:2013, looking to transition to the 2022 standard * The audit DOES NOT include management controls specified in the ISO/IEC27001:2022 standard. * Any material provided as supporting evidence for the assessment will be deleted at the conclusion of the internal audit
Add to cart
About Lean Prototype Machine
Lean Prototype Machine is a boutique privacy and information security compliance consulting service based in Australia. We work with high growth companies that are looking to implement ISO27001, SOC, NIST CSF or comply with the CCPA, HIPAA and GDPR. Lean Prototype Machine is led by Chris Tia - CIPP/US, CIPP/E, CIPT and certified ISO27001 Internal Auditor, NIST CSF, COBIT, OneTrust Professional and Advanced SOC.
Chris is an experienced digital data technologist specialising in privacy and data protection solutions. He helps organisations
Manage online risk to protect business reputation, continuity and consumer trust
Integrate governance processes, benchmarks & standards to protect digital & data assets
Initiate strategic change by increasing awareness of data protection policies, obligations & best practices
Automate privacy operations to meet regulatory requirements and demonstrate compliance
Chris has an extensive background in system analysis, technical infrastructure design and applications development - with hands on experience across varied technologies including telecommunications, high availability systems, eCommerce, RPA, Process Mining, data analytics, API micro-services and cloud based platforms.
Because you already have deep experience with ISO27001, we have streamlined the internal audit process to help save you valuable time and resources. Our assessment questionnaire allows you to answer and provide evidence anytime and anywhere. Once it is completed, we will use the answers and materials provided to make a final assessment or follow up to obtain further clarification. Any material provided will also be deleted at the conclusion of the internal audit.