When to use this
Use this checklist during an internal audit of clear desk, clear screen, printer, fax, and unattended information controls.
Related controls
- A.7.7 Clear Desk and Clear Screen
- A.7.7 Audit Evidence Pack
- Clear Desk and Clear Screen Checklist
- Printer and Fax Security Checklist
Audit checklist
- Confirm clear desk and clear screen rules are documented.
- Confirm rules align with information classification.
- Check unattended desks for sensitive papers or removable media.
- Check unattended workstations for locked screens.
- Review auto-lock settings.
- Inspect printers and fax machines for exposed sensitive output.
- Confirm staff know how to use secure printing.
- Check visitor/cleaner exposure controls.
- Review inspection, warning, and corrective-action records.
Findings table
| Area/team/device | Expected evidence | Observed evidence | Gap | Finding type | Action owner |
|---|---|---|---|---|---|
| TBD | TBD | TBD | TBD | NC / observation / conforming | TBD |
- Iso27001
- ISO27002
- Template
- Audit
- A7 7
Note Metadata
Aliases: A.7.7 Clear Desk Clear Screen Audit Checklist
Source: 90 Templates/A.7.7 Audit Checklist.md
Graph-sourced resources
Templates and evidence
Auditor evidence packs
Evidence collections and audit-facing verification material.
Related Notes
- ISO 27001 A.7.7 - Clear Desk and Clear Screen
- A.7 Physical Controls MOC
- A.7.7 Audit Evidence Pack
- Audit Evidence MOC
- AQ-ISO27001-A.7.7 Clear Desk and Clear Screen
- A.7 Physical Controls Audit Guide
- A.7 Physical Controls Implementation Audit Risk Mapping
- Clear Desk and Clear Screen Checklist
- Printer and Fax Security Checklist
- Audit Evidence Index
- Templates MOC