Yes - Clause 9.2 of the Standard makes this requirement explicit. Remember, you must audit to assess whether your ISMS is meeting your own organisational requirements as well as the requirements of the Standard and that it is effectively implemented and maintained.
related BLog
No items found.
"
The consultant’s efforts in ensuring that our PCI compliance is audited correctly is highly appreciated, as it gives the company an accreditation that we can be proud of and that we can show off to existing and prospective customers as proof of our security posture. A huge thank you to URM for providing such a valuable service.
Open Banking Platform
contact US
Let us help you
Let us help you in your compliance journey by completing the form and letting us know how we can best support you.