top of page

Promote

CONTINUAL IMPROVEMENT

TYPES OF AUDITS WE PERFORM

First-party- Internal

 

A first-party audit is an audit conducted by an organization on itself to determine whether its systems and procedures are consistently improving its ability to provide information security (IS) for itself and its interested parties and as a means to evaluate conformance with its procedures and the Standard. Internal Audits are a requirement of most ISO Standards.

​

Second-party- Customer or Supplier

 

A second-party audit is carried out on a current or potential supplier by a purchasing organization; audit results may then be used as a part of the purchasing evaluation. Purchasers must consider how much assurance is needed for a particular ISO Standard. By consideration of a number of factors, a decision can be reached as to the relative importance of the supplier having a fully compliant system. This should mean that even if a supplier had a very attractive price and delivery, they would not be given a contract where risk was involved due to weaknesses in their Management System.

Third-party- Independent

 

You can invite us to independently audit your management systems for the purpose of evaluating the effectiveness of your Management System, statutory and regulatory requirements, or to assess the effectiveness of particular risk treatment, etc.

bottom of page