2.1 KiB
2.1 KiB
Title: Internal Audit Report Template Document ID: [AUD-REPORT-001] Version: 0.1 Draft Status: Draft Owner: CISO (Paul Jenkins) Approver: CISO (Paul Jenkins) Classification: Internal Effective date: [DD Month YYYY] Review date: [DD Month YYYY]
Internal Audit Report Template
Purpose
This template provides a consistent structure for reporting the outcome of an internal ISMS audit.
Audit Details
- Audit reference: [AUD-XXX]
- Audit title: [Title]
- Audit scope: [Scope]
- Audit criteria: [Policies, standards, procedures, clauses, or other criteria]
- Audit period: [DD Month YYYY to DD Month YYYY]
- Auditor(s): [Name / Role]
- Auditee(s): [Name / Role / Team]
- Report date: [DD Month YYYY]
Audit Objective
[State the purpose of the audit and what it was intended to confirm.]
Summary Conclusion
[Summarise whether the audited area appears conformant, effective, partially effective, or materially deficient.]
Work Performed
Describe the work completed, for example:
- document review
- interviews
- walkthroughs
- sample testing
- evidence review
Findings
| Finding ID | Rating | Requirement / Criteria | Finding Summary | Evidence Reference | Owner | Due Date |
|---|---|---|---|---|---|---|
| [F-001] | [Observation / Minor / Major] | [Requirement] | [Summary] | [Evidence] | [Role] | [DD Month YYYY] |
Positive Practices
[Record notable strengths, effective controls, or improvements observed.]
Nonconformities And Improvement Areas
[Summarise the main control gaps, recurring issues, or themes.]
Agreed Actions
| Action ID | Action Description | Owner | Target Date | Linked Finding |
|---|---|---|---|---|
| [CA-001] | [Action] | [Role] | [DD Month YYYY] | [F-001] |
Distribution
- [Role / Team]
- [Role / Team]
Related Documents
- Internal Audit Procedure
- Internal Audit Plan Template
- Corrective Action Procedure
- Corrective Actions Register Template
Version Control
| Version | Date | Description of Change | Author |
|---|---|---|---|
| 0.1 Draft | [DD Month YYYY] | Initial draft. | [Name or Role] |