Back to site
ISO/IEC 27001:2022 prior knowledge quiz
Question 1 of 12
With regards to the controls, what must the organisation produce?
Statement of applicability
Statement of implementation
Statement of control
Question 2 of 12
Where would you find the Terms and Definitions for ISO/IEC 27001:2022?
ISO 27000
ISO 9000
Oxford English Dictionary
Question 3 of 12
ISO/IEC 27001:2022 is focussed solely on the protection of personal information. Is this statement 'true' or 'false'?
True
False
Question 4 of 12
ISO/IEC 27001:2022 requires which of the following to be documented (in Clause 6)? Select as many as you think apply
Risk assessment
Risk treatment
Question 5 of 12
Which is a top management responsibility? Select as many as you think apply
Promoting continual improvement
Ensuring the ISMS is integrated into the business
Neither
Question 6 of 12
Where in the standard will you find a reference for controls?
Clause 9 Performance evaluation
Annex A
Annex SL
Question 7 of 12
How is 'Information Security' defined in an ISMS (Information Security Management System) based on ISO/IEC 27001:2022?
Protection of data and information
Maintenance of security services
Preservation of confidentiality, integrity and availability of information
Question 8 of 12
What does the C in the CIA of Information Security stand for?
Confidentiality
Context
Conformity
Question 9 of 12
"ISO/IEC 27001:2022 uses the same Annex SL 10-clause framework as ISO 9001:2015 and ISO 14001:2015." Is this statement 'true' or 'false'?
True
False
Question 10 of 12
In ISO/IEC 27000:2018 what is "fulfilment of a requirement"?
Conformity
Compliance
Question 11 of 12
"The scope [of the management system] shall be available as documented information". Is this statement 'true' or 'false'?
True
False
Question 12 of 12
ISO/IEC 27001:2022 requires defined rules for which of the following? Select as many as you think apply
Clear desk
Clear screen
Next
Full Name
Email
Phone Number
Request a call back