PECB ISO-IEC-42001-Lead-Auditor Exam With Confidence Using Practice Dumps

The statement “Information from external sources, like regulators or complaints, is automatically public and can be disclosed without restriction” is NOT accurate.

Even if information is sourced externally (e.g., from a regulator or complaint), it is not considered public by default and cannot be disclosed freely. Certification bodies and auditors are bound to confidentiality requirements as per ISO/IEC 17021-1 and ISO/IEC 42001 unless legally or contractually obligated to disclose.

A combined audit refers to a single audit that covers two or more management systems (e.g., AIMS and ISMS) managed as a single system. In this case, the organization is undergoing a certification audit for both ISO/IEC 42001 and ISO/IEC 27001 simultaneously.

According to ISO 19011:2018 (Clause 3.11), a combined audit is “an audit conducted at one auditee on two or more management systems of different disciplines.”

It is the certification body’s responsibility to ensure that an audit plan is established prior to the audit.

ISO/IEC 17021-1:2015 Clause 9.2.3.1 requires certification bodies to “ensure that an audit plan is established, communicated, and agreed upon.”

Updating or communicating the plan can be tasks delegated to the audit team leader, but the accountability for establishing the audit plan remains with the certification body.