FREE ISO 20000 Certification Auditor Questions and Answers

Question 1

"A certification audit has discovered that security risk assessments are not being carried out within the stipulated timeframes.
She has indicated that this does not comply with ISO/IEC 20000-1 standard.
What justifies this deviation from the norm?"

Accepted Answer

Security risk assessments shall be performed at planned intervals

Answer

Security risk assessments should be performed as agreed

Answer

Security risk assessments are not addressed in the ISO/IEC 20000

Answer

Security risk assessments shall be performed at least annually

Question 2

Which deviation is the biggest?

Accepted Answer

The organization being audited does not carry out internal audits

Answer

The names of the interviewed employees were not registered in the audit plan

Answer

The evaluation of quality capability is lacking for one supplier.For the major of suppliers this evaluation is on hand

Answer

There are only limited test plans although acceptance testing is carried out for new services

Question 3

What may not always be found in an audit report?

Accepted Answer

The statements made by the individuals assigned

Answer

The audit objective

Answer

The name of the audit client

Answer

The name of the audit client

Question 4

The Service Management System (SMS) Certification aims directly at a particular result.
What is the desired result?

Accepted Answer

Furnishing evidence of an effective qualty management system by an independent third party

Answer

Identifying non-conformances within the organization

Answer

Reducing the cost of the SMS while maintaining

Answer

Obtaining evidence of qualified personnel by an Independent third party

Question 5

What does an ISO 20000 Auditor do?

Accepted Answer

To assess and verify whether an organization conforms to the ISO 20000 standards.

Answer

To provide consultation on ISO 20000 implementation.

Answer

To train organizations on ISO 20000 standards.

Answer

To develop and implement ISO 20000 standards.

Question 6

What is ISO 20000 Auditor's main area of focus?

Accepted Answer

Assessing IT service management systems.

Answer

Assessing human resource management systems.

Answer

Assessing marketing strategies.

Answer

Assessing financial management systems.

Question 7

What ISO standard does an ISO 20000 Auditor evaluate compliance with?

Accepted Answer

ISO 20000.

Answer

ISO 27001.

Answer

ISO 14001.

Answer

ISO 9001.

Question 8

Why is it crucial for businesses to follow ISO 20000 guidelines?

Accepted Answer

To demonstrate their commitment to effective IT service management.

Answer

To increase the profit margin.

Answer

To reduce operating costs.

Answer

To comply with legal requirements.

Question 9

What aspects of IT service management does the ISO 20000 Auditor evaluate?

Accepted Answer

The design, transition, delivery, and improvement of IT services.

Answer

The implementation of network security measures.

Answer

The procurement of IT equipment.

Answer

The development of software applications.

Question 10

What is the goal of an audit by an ISO 20000 auditor?

Accepted Answer

To identify non-conformities and potential improvements within an organization's IT service management system.

Answer

To investigate security breaches in IT systems.

Answer

To reward organizations that adhere to ISO 20000 standards.

Answer

To establish cost-saving measures for an organization.

"A certification audit has discovered that security risk assessments are not being carried out within the stipulated timeframes. She has indicated that this does not comply with ISO/IEC 20000-1 standard.What justifies this deviation from the norm?"

"A certification audit has discovered that security risk assessments are not being carried out within the stipulated timeframes.
She has indicated that this does not comply with ISO/IEC 20000-1 standard.
What justifies this deviation from the norm?"