Group Project The auditing team from Auditing " R " Us has got a request from the organization of XYZ. The organization needs to comply with the standard of ISO/IEC 27001 Information Security Management Systems (ISMS) to get the certification. You as IS auditors need to understand the organization and its context including the objectives of the organization as well as their risks Your role as IS auditors is to perform compliance audit with the requirements of ISO/IEC 27001 to determine the readiness level. You are required to provide 2 parts in the report: 1. Audit planning phase that includes 5 steps for each subject: 2. The instrument, which is the ISO 27001 readiness table that include the following: - Check list (the questions) - Metric (statusimaturity level scale) and - Calculation technique of the maturity level 3. Study the "Essential Cybersecurity Controls" document that was issued by the National Cybersecurity Authority (NCA). Based on your auditing topic, compare the requirements of ISO 27001 and NCA. And clarify that in the presentation. 4. You need to conduct a presentation to the audit team to briefly clarify the audit plan, instrument and the differences between ISO 27001 and NCA requirements. Report Marking Guide: 1. Govemance and Risk management