ISO 27001 certification is don't just about what specialized steps you put in position. ISO 27001 is about ensuring the organization controls and management processes you have set up are enough and proportionate for the data protection threats and chances you've got discovered and evaluated with your risk assessment. http://27001leadauditortraining52738.blogprodesign.com/15119447/facts-about-isms-lead-auditor-certification-revealed