The guidance document you linked explains it pretty well. Every organization is different and each determines how to approach this requirement as well as all the rest of the requirements of the standard.
In dealing with an auditor, you need to demonstrate you understand the requirement and can explain your approach to meeting it.
Although you need to keep records of the competencies needed and how they were achieved, that doesn't mandate records for every conceivable component. That would be an impossible fools errand.
So what is your approach and can you explain yourself?
In dealing with an auditor, you need to demonstrate you understand the requirement and can explain your approach to meeting it.
Although you need to keep records of the competencies needed and how they were achieved, that doesn't mandate records for every conceivable component. That would be an impossible fools errand.
So what is your approach and can you explain yourself?