The fourth combined ISO audits for ISO 9001:2015 (QMS) and ISO/IEC 27001:2013 (ISMS) were conducted on 8th and 9th June 2021. It targeted all the departments that were not sampled during the KEBS recertification audits. The objectives of the audits were to determine level of conformity of the implemented QMS to ISO 9001:2015 Standard and ISMS to ISO 27001:2013 Standard and to identify areas of improvement. Fifteen departments were sampled and audited on both systems. At the end of the audit it was concluded that, based on the samples taken during the audit that University of Embu has implemented the Quality Management System to a greater extent (82.32%) that meets the requirements of ISO 9001:2015 Standard, commitments in University QMS procedures and adherence to relevant legal and regulatory documents in its operations.
Further, on ISMS it the auditors’ conclusion that University of Embu has implemented the Information Security Management System to a greater extent (83.4%) that meets the requirements of ISO/IEC 27001:2013 Standard, ISMS procedures, ISMS policies, ISMS guidelines, risk registers and relevant legal and regulatory documents applicable in the University operations.