APPENDIX 1: DEFINITIONS OF TERMS
Definitions that have been taken from ISO /IEC 17799:2005 are identified thus: *
Definitions that have been taken from BS 7799:2002 identified thus: **
Accreditation – the procedure through which an authoritative body formally recognises a person’s or organisation’s competence to carry out specified tasks. Not to be confused with certification. Third party certification (auditing) bodies become accredited and those they audit, subject to a successful outcome, become certificated.
Audit – systematic, independent and documented process for obtaining audit evidence and evaluating it objectively to determine the extent to which agreed criteria are fulfilled (ISO 19011, section 3.1).
Auditor – person with the demonstrated ...
Get ISO27001 Assessments Without Tears now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
