Capita Intelligence Communications recently completed a five-day remote audit for its information security ISO 27001 certification, rather than risk delaying its assessment schedule.
As part of Capita plc – the UK’s largest outsourcing specialist, delivering integrated multi-channel communication and digitisation solutions - information security is of critical importance to the company. ISO 27001 certification provides a framework for managing issues, risk and opportunities and keeps the business focused on continual improvement.
Karen Kyle, Compliance Manager, Mark Davison, Management Systems Manager and Andy Grimes the Business Assurance Director said: “A remote audit was a sensible option – it eliminated travel requirements and meant we could maintain our audit schedule and reduce any backlog of audits that we would then be trying to catch up on later in the year. Certification also boosts our credibility when seeking new business opportunities, with certification against specified management systems standards becoming pre-requisite for the majority of the opportunities we pursue. In addition to our ISO 27001 audit, this has also been a very useful test of our business continuity arrangements, especially in a situation that can never truly be fully tested until it happens.”
With the audit proving successful, the company predicts that remote audits will become an integrated part of future assessments, incorporating both online and face-to-face elements as meets the requirements of the company and the accreditation body.
Karen continued: “While we are very likely to use remote technology again, we would really like to see a combination of onsite and remote audits become the norm. Audits that are over several days could be structured with a day onsite to undertake any physical inspections or walkabouts with the remainder being done remotely. That way auditors will be able to get a picture of our sites and processes as well as anything that could not be audited remotely and still be able to utilise remote auditing for items that do not need a physical presence.”
Remote auditing has been adopted by thousands of businesses in recent months, with many seeing the benefits this technology can offer.
“So far it’s worked extremely well and eliminated the need for several people involved in the audit to travel some distance,” added Karen. “There’s no need to book several meeting rooms, which can sometimes prove to be quite challenging. Having the camera enabled helps give a personal experience, as you are still able to see each other and know who is talking and when, especially when it comes to opening and closing meetings or when other members of staff join the call. The remote audit has proved to be very similar to a physical one for most of the schedule.”
LR offers remote audits for all accredited ISO standards, complying with accreditation body requirements.