Initial commit

04-registers/internal-audit-plan-template.md

@@ -0,0 +1,59 @@
+Title: Internal Audit Plan Template
+Document ID: [REG-AUDIT-PLAN-001]
+Version: 0.1 Draft
+Status: Draft
+Owner: CISO (Paul Jenkins)
+Approver: CISO (Paul Jenkins)
+Classification: Internal
+Effective date: [DD Month YYYY]
+Review date: [DD Month YYYY]
+
+# Internal Audit Plan Template
+
+## Purpose
+
+This template provides the structure for planning internal ISMS audits across the audit cycle.
+
+## Scope
+
+This plan applies to internal audit activities covering governance, controls, processes, evidence, and improvement actions within the ISMS scope.
+
+## Data Fields / Expected Columns
+
+The audit plan should record at least:
+
+- audit reference
+- audit topic or scope
+- audit criteria
+- planned period
+- assigned auditor
+- auditee or owner
+- status
+- report due date
+- follow-up required
+- notes
+
+## Ownership
+
+This plan should be owned by [Role]. Audit leads should maintain planned dates, status, and follow-up information.
+
+## Update Frequency
+
+The plan should be updated when audits are scheduled, rescheduled, completed, or when follow-up activity changes status.
+
+## Retention
+
+Audit planning records should be retained with related audit outputs in line with retention and audit traceability requirements.
+
+## Template Table
+
+| Audit Reference | Audit Topic / Scope | Audit Criteria | Planned Period | Assigned Auditor | Auditee / Owner | Status | Report Due Date | Follow-up Required | Notes |
+| --- | --- | --- | --- | --- | --- | --- | --- | --- | --- |
+| [AUD-001] | [Topic / area] | [Policy / standard / clause] | [Month / Quarter] | [Name / Role] | [Role / Team] | [Planned / In Progress / Complete] | [DD Month YYYY] | [Yes / No] | [Notes] |
+
+## Related Documents
+
+- Internal Audit Procedure
+- Corrective Action Procedure
+- Management Review Procedure
+- ISMS Manual