83 lines
2.1 KiB
Markdown
83 lines
2.1 KiB
Markdown
Title: Internal Audit Report Template
|
|
Document ID: [AUD-REPORT-001]
|
|
Version: 0.1 Draft
|
|
Status: Draft
|
|
Owner: CISO (Paul Jenkins)
|
|
Approver: CISO (Paul Jenkins)
|
|
Classification: Internal
|
|
Effective date: [DD Month YYYY]
|
|
Review date: [DD Month YYYY]
|
|
|
|
# Internal Audit Report Template
|
|
|
|
## Purpose
|
|
|
|
This template provides a consistent structure for reporting the outcome of an internal ISMS audit.
|
|
|
|
## Audit Details
|
|
|
|
- Audit reference: [AUD-XXX]
|
|
- Audit title: [Title]
|
|
- Audit scope: [Scope]
|
|
- Audit criteria: [Policies, standards, procedures, clauses, or other criteria]
|
|
- Audit period: [DD Month YYYY to DD Month YYYY]
|
|
- Auditor(s): [Name / Role]
|
|
- Auditee(s): [Name / Role / Team]
|
|
- Report date: [DD Month YYYY]
|
|
|
|
## Audit Objective
|
|
|
|
[State the purpose of the audit and what it was intended to confirm.]
|
|
|
|
## Summary Conclusion
|
|
|
|
[Summarise whether the audited area appears conformant, effective, partially effective, or materially deficient.]
|
|
|
|
## Work Performed
|
|
|
|
Describe the work completed, for example:
|
|
|
|
- document review
|
|
- interviews
|
|
- walkthroughs
|
|
- sample testing
|
|
- evidence review
|
|
|
|
## Findings
|
|
|
|
| Finding ID | Rating | Requirement / Criteria | Finding Summary | Evidence Reference | Owner | Due Date |
|
|
| --- | --- | --- | --- | --- | --- | --- |
|
|
| [F-001] | [Observation / Minor / Major] | [Requirement] | [Summary] | [Evidence] | [Role] | [DD Month YYYY] |
|
|
|
|
## Positive Practices
|
|
|
|
[Record notable strengths, effective controls, or improvements observed.]
|
|
|
|
## Nonconformities And Improvement Areas
|
|
|
|
[Summarise the main control gaps, recurring issues, or themes.]
|
|
|
|
## Agreed Actions
|
|
|
|
| Action ID | Action Description | Owner | Target Date | Linked Finding |
|
|
| --- | --- | --- | --- | --- |
|
|
| [CA-001] | [Action] | [Role] | [DD Month YYYY] | [F-001] |
|
|
|
|
## Distribution
|
|
|
|
- [Role / Team]
|
|
- [Role / Team]
|
|
|
|
## Related Documents
|
|
|
|
- Internal Audit Procedure
|
|
- Internal Audit Plan Template
|
|
- Corrective Action Procedure
|
|
- Corrective Actions Register Template
|
|
|
|
## Version Control
|
|
|
|
| Version | Date | Description of Change | Author |
|
|
| --- | --- | --- | --- |
|
|
| 0.1 Draft | [DD Month YYYY] | Initial draft. | [Name or Role] |
|