Exam ISO-IEC-27001-Lead-Auditor Topic 5 Question 393 Discussion
Actual exam question for PECB's ISO-IEC-27001-Lead-Auditor exam
Question #: 393
Topic #: 5
Question #: 393
Topic #: 5
Finnco, a subsidiary of a certification body, provided ISMS consultancy services to an organization.
Considering this scenario, when can the certification body certify the organization?
Considering this scenario, when can the certification body certify the organization?
Suggested Answer: B Vote an answer
A certification body cannot certify an organization if it has provided consultancy services to that organization.
This situation presents a conflict of interest, as the certification body is required to maintain impartiality and objectivity. The ISO/IEC 17021-1 standard, which sets out requirements for bodies providing audit and certification of management systems, specifies that providing both services to the same client is incompatible.
References: ISO/IEC 17021-1:2015 Conformity assessment - Requirements for bodies providing audit and certification of management systems
This situation presents a conflict of interest, as the certification body is required to maintain impartiality and objectivity. The ISO/IEC 17021-1 standard, which sets out requirements for bodies providing audit and certification of management systems, specifies that providing both services to the same client is incompatible.
References: ISO/IEC 17021-1:2015 Conformity assessment - Requirements for bodies providing audit and certification of management systems
by Ernest at May 02, 2026, 05:35 PM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).