graphgrc

SCF - CPL-02.1 - Internal Audit Function

Mechanisms exist to implement an internal audit function that is capable of providing senior organization management with insights into the appropriateness of the organization’s technology and information governance processes.

Mapped framework controls

ISO 27001

• 9.2.1.a.1
• 9.2.1.a.2
• 9.2.1.b
• 9.2.1
• 9.2.2.a
• 9.2.2.b
• 9.2.2.c
• 9.2.2
• 9.2

ISO 27002

• A.5.35
• A.8.34

Control questions

Does the organization implement an internal audit function that is capable of providing senior organization management with insights into the appropriateness of the organization’s technology and information governance processes?

This site is open source. Improve this page.