PECB
ISO-IEC-27001-LEAD-AUDITOR · Question #133
ISO-IEC-27001-LEAD-AUDITOR Question #133: Real Exam Question with Answer & Explanation
Sign in or unlock ISO-IEC-27001-LEAD-AUDITOR to reveal the answer and full explanation for question #133. The question stem and answer options stay visible for context.
Question
You are an experienced audit team leader conducting a third-party surveillance audit of an organisation that designs websites for its clients. You are currently reviewing the organisation's Statement of Applicability. Based on the requirements of ISO/IEC 27001, which two of the following observations about the Statement of Applicability are false?
Options
- AA Statement of Applicability must be produced by organisations seeking ISO/IEC 27001
- BJustification is only required for any controls that the organisations choses to exclude
- CJustification for both the inclusion and exclusion of Annex A controls in the Statement of
- DThe Statement of Applicability is owned and amended by the organisation's top management
- EAdditional controls not included in Appendix A may be added to the Statement of Applicability if
- FThe Statement of Applicability must include Organisational, Physical, People and Technological
Unlock ISO-IEC-27001-LEAD-AUDITOR to see the answer
You've previewed enough free ISO-IEC-27001-LEAD-AUDITOR questions. Unlock ISO-IEC-27001-LEAD-AUDITOR for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.