FAQ
FAQ’s
What are ISO 27001 background checks?

What are ISO 27001 background checks?

An ISO 27001 background check is nothing but verification and accuracy of an applicant’s curriculum vitae. It could be the verification of personal, professional, and any kind of references. 

Key considerations for background checks

Conducting thorough background checks is of utmost importance, and here are the key considerations:

1. Authorized individuals and defined procedures

Ensure that only authorized personnel perform background checks. Create a formal process with clear rules on who should conduct these checks, when they should be carried out, and the precise method to follow.

2. Scope of background checks

Apply background checks to new employees, contractors and current employees who are being promoted or transferred to positions with more stringent requirements.

3. Contractor agreements

When a third-party contractor handles background checks for your organization, establish a clear agreement between your organization and the contractor. This agreement should outline the procedures to be followed and mandate the communication of any doubts or concerns that arise during the process.

The verifications include:

Verification of curriculum vitae

Confirm the accuracy and completeness of the applicant’s resume, ensuring their qualifications and experiences align with their claims.

Reference verification

Check personal and professional references, which may involve contacting neighbors, previous employers or researching publicly available information online.

Qualification confirmation

Verify the claimed academic or professional qualifications by contacting the issuers of certifications and qualifications.

Identity verification

Confirm the identity of the applicant as provided in their job application by contacting the issuer of their identification document.

Job-Specific checks

Conducted additional verifications specific to the job requirements. For critical roles, you need to check criminal records, while candidates with more financial responsibilities could have their bank history examined.

Your organization’s success significantly relies on the people you employ. Even the most advanced tools and resources can be misused if they fall into the wrong hands.

Was this article helpful?

How can we improve this article?

Related questions

  • Which is the latest version of the PCI DSS compliance?
  • What is the current version of ISO 27001?
  • What is PCI DSS compliance verification?
  • What are PCI DSS compliance milestones?
  • What are the three steps of PCI compliance?
  • What are the functions of PCI?
  • How often must PCI DSS compliance be validated?
  • What is required for PCI DSS compliance?
  • How to reduce PCI DSS cost?
  • Does ISO 27001 require MFA?

Found this useful?

Get SOC 2 compliance
ready in 4 weeks!

Try Sprinto

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales