Exam ISO-IEC-27001-Lead-Implementer Topic 1 Question 55 Discussion
Actual exam question for PECB's ISO-IEC-27001-Lead-Implementer exam
Question #: 55
Topic #: 1
Question #: 55
Topic #: 1
How does the Statement of Applicability (SoA) contribute to the certification audit process?
Suggested Answer: B Vote an answer
The Statement of Applicability (SoA) serves as the primary reference document for auditors during the certification audit. It lists all Annex A controls, justifies inclusions and exclusions, and documents implementation status for each control.
"The SoA shall include justification for inclusions and exclusions of controls and state their implementation status. The SoA provides auditors with the definitive list of controls relevant to the ISMS."
- ISO/IEC 27001:2022, Clause 6.1.3 d
"The SoA shall include justification for inclusions and exclusions of controls and state their implementation status. The SoA provides auditors with the definitive list of controls relevant to the ISMS."
- ISO/IEC 27001:2022, Clause 6.1.3 d
by Cecilia at Jun 29, 2026, 05:42 PM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).