The external audit is split into two stages. The first involves an auditor looking over your documentation to make sure it aligns with ISO 27001 certification requirements. Again, your auditor will note any nonconformities and opportunities for improvement based on the ISO 27001 standard and your