What is one of the main goals of a follow-up audit?

The main goal of a follow-up audit is to assess the effectiveness of corrections made after previous audits. This process is crucial for ensuring that any identified non-conformities have been appropriately addressed and that the measures implemented are working as intended. By conducting follow-up audits, organizations can verify whether corrective actions have led to improvements and if the previously identified issues are resolved.

This goal aligns with the continuous improvement principle of ISO/IEC 27001, where organizations need to not only identify and document issues but also ensure that they are effectively mitigated. By confirming the effectiveness of corrective actions, organizations can enhance their information security management system and foster ongoing compliance with the standards set forth in ISO/IEC 27001.

The other options focus on aspects that are not central to the purpose of a follow-up audit. For instance, developing the annual audit plan involves planning future audits rather than assessing past actions. Training new auditors pertains to capacity building and skill development, which is also not the focus of a follow-up audit. Increasing organizational compliance is more of a broader outcome that may arise from effective corrective actions but is not specifically the goal of the follow-up audit itself.