Security Audit Work Program

screenshot of the first page of Security Audit Work Program

Organizations can use these audit work program samples to assess the quantity of risk and the effectiveness of the risk management processes related to security measures instituted to ensure confidentiality, integrity and availability of information and to instill accountability for actions taken on company systems.

The objectives and procedures in these work programs are divided into Tier I and Tier II. Tier I assesses an institution’s process for identifying and managing risks, while tier II provides additional verification where risk warrants it. Tier I and Tier II are intended to be a tool set examiners can use when selecting examination procedures for their particular examination.


Topics
Internal Audit
Risk Assessment
Data Security
Identity and Access Management
IT Security
Audit Testing
IT Risk
IT Audit
Privacy

Related Resources

Policies & Procedures

Password Security Policy

Benchmarking Tools

Enterprise Security Key Performance Indicators (KPIs)

Audit Reports

Security Policy and Procedure Evaluation Report: Administrative Personnel

Free Trial

Sign up for a free, no-obligation trial to start exploring our timesaving, valuable resources.

Let's Do It