UnixTime

Research Note

A.8.34 Audit Checklist

Use this checklist when auditing protection of operational systems during audit testing and assurance activities.

On this page

When to use this

Use this checklist when auditing protection of operational systems during audit testing and assurance activities.

Audit checklist

  • Audit testing scope is documented.
  • Appropriate management approved the activity.
  • Timing and business constraints are agreed.
  • Tools and techniques are identified.
  • Stop criteria and escalation contacts are defined.
  • Access and tool use are logged.
  • Testing does not alter data unless approved.
  • Audit results are protected.
  • Tool validation or approval exists where needed.
  • Independence is considered.

Sampling record

Test/activity sampled Evidence reviewed Result Gap/action
TBD TBD TBD TBD
  • Template
  • Audit
  • Iso27001
  • A8 34

Note Metadata

Aliases: Audit Testing Protection Checklist

Source: 90 Templates/A.8.34 Audit Checklist.md

Graph-sourced resources

Templates and evidence

Auditor evidence packs

Evidence collections and audit-facing verification material.