PECB Lead Implementer (ISO/IEC 27001) — Question 48

Based on scenario 7, InfoSec contracted Anna as an external consultant. Based on her tasks, is this action compliant with ISO/IEC 27001?

Answer options

• A. No, the skills of incident response or forensic analysis shall be developed internally
• B. Yes, forensic investigation may be conducted internally or by using external consultants
• C. Yes, organizations must use external consultants for forensic investigation, as required by the standard

Correct answer: B

Explanation

The correct answer is B because ISO/IEC 27001 allows organizations to use external consultants for forensic investigations if needed. Option A is incorrect as it implies that all skills must be internal, which is not a requirement of the standard. Option C is also wrong because the standard does not mandate the exclusive use of external consultants for forensic investigations.