ISMS/04-registers/management-review-minutes-template.md

Title: Management Review Minutes Template
Document ID: [REG-MGMT-MINUTES-001]
Version: 0.1 Draft
Status: Draft
Owner: CISO (Paul Jenkins)
Approver: CISO (Paul Jenkins)
Classification: Internal
Effective date: [DD Month YYYY]
Review date: [DD Month YYYY]

# Management Review Minutes Template

## Purpose

This template provides the structure for recording formal management review meetings and their outputs.

## Scope

This template applies to formal ISMS management reviews, including periodic reviews and exceptional reviews triggered by significant change or incident.

## Data Fields / Expected Columns

The minutes should capture at least:

- meeting date
- attendees
- chair
- scope or agenda
- review inputs considered
- decisions made
- actions agreed
- action owners
- due dates
- overall conclusions
- next review date

## Ownership

This record should be owned by [Role]. The meeting coordinator should ensure the minutes are complete, approved if required, and retained appropriately.

## Update Frequency

This record should be created for each formal management review meeting and updated until actions are captured and assigned.

## Retention

Management review records should be retained in line with audit, governance, and document retention requirements.

## Template Table

| Meeting Date | Chair | Attendees | Scope / Agenda | Review Inputs Considered | Decisions Made | Actions Agreed | Action Owners | Due Dates | Overall Conclusions | Next Review Date |
| --- | --- | --- | --- | --- | --- | --- | --- | --- | --- | --- |
| [DD Month YYYY] | [Role] | [Names / Roles] | [Agenda summary] | [Objectives / risks / incidents / audits / actions] | [Summary] | [Summary] | [Roles] | [Dates] | [Suitable / adequate / effective summary] | [DD Month YYYY] |

## Related Documents

- Management Review Procedure
- Information Security Objectives Template
- Corrective Actions Register Template
- Internal Audit Plan Template