Title Page
-
Client
-
Conducted on
-
Prepared by
-
Location
-
Scope of Audit
Check list
Asset management. Responsibility for assets. Objective: To identify organizational assets and define appropriate protection responsibilities.
-
Is an inventory of assets in place
-
Is ownership defined for all assets
-
Is acceptable use of assets identified, documented and implemented
Information classification. Objective: To ensure that information receives an appropriate level of protection in accordance with its importance to the organization.
-
Is Information shall be classified in terms of legal requirements, value, criticality and sensitivity to unauthorised disclosure or modification.
-
Is Labelling of information implemented
-
Are Procedures for handling assets developed and implemented<br>in accordance with the information classification scheme adopted by the organization
Media handling. Objective: To prevent unauthorized disclosure, modification, removal or destruction of information stored on media.
-
Management of removable media. Are procedures implemented for the management of removable media in accordance with the classification scheme adopted by the organization.
-
Disposal of media. Is media disposed of securely when no longer required, using formal procedures.
