Audit Templates (Standalone)

List of areas that Internal Audit should consider for audit planning. Here is an example of one area:

Cybersecurity

• Review the organization’s cybersecurity risk assessment, processes and controls to protect its intellectual property, using industry standards as a guide, and provide recommendations for improvements
• Assess implementation of revised technology security models, such as multilayered defenses, enhanced detection methods, and encryption of data leaving the network
• Champion a robust training and education program, including simulated phishing attacks, so that employees play a key role in a comprehensive protection plan
• Assess third-party security providers to evaluate the extent to which they are addressing the most current risks completely and sufficiently
• Demand periodic cyber “fire drills” and review outcomes and procedures followed during such drills and during real-life incidents

For the other areas login to your subscription and download the template.