Initial commit
This commit is contained in:
Paul Jenkins
82
06-audit-and-review/internal-audit-report-template.md
Normal file
82
06-audit-and-review/internal-audit-report-template.md
Normal file
@@ -0,0 +1,82 @@
|
||||
Title: Internal Audit Report Template
|
||||
Document ID: [AUD-REPORT-001]
|
||||
Version: 0.1 Draft
|
||||
Status: Draft
|
||||
Owner: CISO (Paul Jenkins)
|
||||
Approver: CISO (Paul Jenkins)
|
||||
Classification: Internal
|
||||
Effective date: [DD Month YYYY]
|
||||
Review date: [DD Month YYYY]
|
||||
|
||||
# Internal Audit Report Template
|
||||
|
||||
## Purpose
|
||||
|
||||
This template provides a consistent structure for reporting the outcome of an internal ISMS audit.
|
||||
|
||||
## Audit Details
|
||||
|
||||
- Audit reference: [AUD-XXX]
|
||||
- Audit title: [Title]
|
||||
- Audit scope: [Scope]
|
||||
- Audit criteria: [Policies, standards, procedures, clauses, or other criteria]
|
||||
- Audit period: [DD Month YYYY to DD Month YYYY]
|
||||
- Auditor(s): [Name / Role]
|
||||
- Auditee(s): [Name / Role / Team]
|
||||
- Report date: [DD Month YYYY]
|
||||
|
||||
## Audit Objective
|
||||
|
||||
[State the purpose of the audit and what it was intended to confirm.]
|
||||
|
||||
## Summary Conclusion
|
||||
|
||||
[Summarise whether the audited area appears conformant, effective, partially effective, or materially deficient.]
|
||||
|
||||
## Work Performed
|
||||
|
||||
Describe the work completed, for example:
|
||||
|
||||
- document review
|
||||
- interviews
|
||||
- walkthroughs
|
||||
- sample testing
|
||||
- evidence review
|
||||
|
||||
## Findings
|
||||
|
||||
| Finding ID | Rating | Requirement / Criteria | Finding Summary | Evidence Reference | Owner | Due Date |
|
||||
| --- | --- | --- | --- | --- | --- | --- |
|
||||
| [F-001] | [Observation / Minor / Major] | [Requirement] | [Summary] | [Evidence] | [Role] | [DD Month YYYY] |
|
||||
|
||||
## Positive Practices
|
||||
|
||||
[Record notable strengths, effective controls, or improvements observed.]
|
||||
|
||||
## Nonconformities And Improvement Areas
|
||||
|
||||
[Summarise the main control gaps, recurring issues, or themes.]
|
||||
|
||||
## Agreed Actions
|
||||
|
||||
| Action ID | Action Description | Owner | Target Date | Linked Finding |
|
||||
| --- | --- | --- | --- | --- |
|
||||
| [CA-001] | [Action] | [Role] | [DD Month YYYY] | [F-001] |
|
||||
|
||||
## Distribution
|
||||
|
||||
- [Role / Team]
|
||||
- [Role / Team]
|
||||
|
||||
## Related Documents
|
||||
|
||||
- Internal Audit Procedure
|
||||
- Internal Audit Plan Template
|
||||
- Corrective Action Procedure
|
||||
- Corrective Actions Register Template
|
||||
|
||||
## Version Control
|
||||
|
||||
| Version | Date | Description of Change | Author |
|
||||
| --- | --- | --- | --- |
|
||||
| 0.1 Draft | [DD Month YYYY] | Initial draft. | [Name or Role] |
|
||||
Reference in New Issue
Block a user