When to use this
Use this checklist during an internal audit of privileged access allocation, use, monitoring, emergency access, and removal.
Related controls
- A.8.2 Privileged Access Rights
- A.8.2 Audit Evidence Pack
- Privileged Access Register
- Privileged Access Review Checklist
- Emergency Privileged Access Record
- Privileged Activity Log Review Checklist
Audit checklist
- Review privileged access policy/procedure.
- Review privileged access register.
- Sample privileged access approvals and justifications.
- Check separate privileged identities where feasible.
- Check privileged activity logging.
- Review log protection and retention.
- Sample privileged activity reviews.
- Review emergency access records and post-use reviews.
- Check privilege removal after role change or end of need.
- Interview privileged users.
Findings table
| User/system | Expected evidence | Observed evidence | Gap | Finding type | Action owner |
|---|---|---|---|---|---|
| TBD | TBD | TBD | TBD | NC / observation / conforming | TBD |
- Template
- Audit
- Iso27001
- A8 2
Note Metadata
Aliases: A.8.2 Privileged Access Audit Checklist
Source: 90 Templates/A.8.2 Audit Checklist.md
Graph-sourced resources
Templates and evidence
Auditor evidence packs
Evidence collections and audit-facing verification material.
Related Notes
- A.8.2 Audit Evidence Pack
- Audit Evidence MOC
- ISO 27001 A.8.2 - Privileged Access Rights
- A.8 Technological Controls MOC
- A.8 Technological Controls Audit Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- Emergency Privileged Access Record
- Privileged Access Register
- Privileged Access Review Checklist
- Privileged Activity Log Review Checklist
- Audit Evidence Index
- Templates MOC