Upload
ifour-consultancy
View
92
Download
1
Embed Size (px)
Citation preview
iFour ConsultancyIS Audit Checklist
Web Development Company India - http://www.ifourtechnolab.com/1
Audit Stages
Pre-Audit Plan & Define
During Audit - Execution
Post-Audit Improve, Sustain & Reaudit
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/2
Pre Audit Checklist
Background
Purpose
Characteristics
Methods
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/3
Pre Audit Checklist
Data Collection
Analysis
Conclusion
Re-audit
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/4
During Audit ChecklistList of documents
System Assessment
Details of H/W and S/W
Risk Assessment
General Controls
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/5
Sample Audit ChecklistPolicy Reference NumberDescriptionComplianceFindingsaA.14.1.1Are all program changes properly documented ?YesWhom you met?Are all backups in place ?NoWhat they quotedAre the adequate controls implemented to maintain secure environment ?N/AEquipment Checked
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/6
Post Audit Checklist
Identify communication breakdown
Agreement & Disagreement
Status report
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/7
Performing the internal audit is not that difficult it is rather straightforward: one needs to follow what is required in the standard and what is required in the ISMS/BCMS documentation, and find out whether the employees are complying with those rules.
If one has prepared internal audit checklist properly, thetask will certainly be a lot easier.
Its simple
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/8
References
http://advisera.com/27001academy/knowledgebase/how-to-make-an-internal-audit-checklist-for-iso-27001-iso-22301/http://www.nicpld.org/courses/hospVoc/assets/ClinicalEffect/auditPresentationChecklist.pdfhttp://searchsecurity.techtarget.com/feature/Preparing-for-auditors-Checklists-for-before-during-and-after-an-IT-audithttp://www.slideshare.net/ATBHATTI/audit-checklist-for-information-systems-14849697http://www.icisa.cag.gov.in/Background%20Material-IT%20Environment/IT-Audit-Manual/Vol-3.pdfhttp://www.gain-ni.org/index.php/resources/clinical-audit/5-stages-of-audit
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/9
Thanks
Web Development Company India
http://www.ifourtechnolab.com
Web Development Company India - http://www.ifourtechnolab.com/10