The following 574 items are listed by Content Data.
Articles
ISO 27001: 2022 – Key Changes and Approaches to Transition
A look at the changes and updates to the ISO 27001 standard published on October 25, 2022, and the approaches organizati...
Subscriber Content
Guides
Sarbanes-Oxley Section 404: Report Testing Methodology Guide
This presentation serves as a guide to train SOX project teams on testing reports that are used during the financial rep...
Subscriber Content
Policies & Procedures
Control Self-Assessment Policy
The purpose of this policy is to assist control owners, process owners and internal audit with implementing and executin...
Subscriber Content
Policies & Procedures
Control Transition Policy
This policy establishes procedures to ensure the continued integrity of a company’s internal controls system.
Subscriber Content
Audit Programs
IT Physical Security Audit Work Program
This work program sample can be used to perform an audit of the physical security of your IT facilities.
Subscriber Content
Audit Programs
Service-Level Controls Audit Work Program
This tool contains two sample programs that provide best-practice steps organizations can use to audit and enhance their...
Subscriber Content
Audit Programs
Firewall Audit Work Program
With this tool, you get four sample work programs designed to provide guidance for your next firewall audit.
Subscriber Content
Audit Programs
Spreadsheet Audit Work Program
Use the general best-practice steps included in this document to perform an effective spreadsheet audit.
Subscriber Content
Checklists & Questionnaires
Treasury Internal Control Questionnaire
This sample questionnaire can be used by management performing a control self-assessment of their operations.
Subscriber Content
Policies & Procedures
Computing Operations and Support: Service-Levels Policy
The purpose of this policy is to ensure that there are defined and documented IT services, service times and user-agreed...
Subscriber Content
Policies & Procedures
Impairments Policy
This sample policy is designed to help organizations define processes for reviewing impaired property and equipment.
Subscriber Content
Guides
Risk Assessment Guide
This tool contains four guides that can be used by auditors to understand and improve their risk assessment process.
Subscriber Content