Information
-
Audit Title
-
Document No.
-
Client / Site
-
Conducted on
-
Prepared by
-
Location
-
Personnel
A.7 Asset Management
A.7.1 Responsibility for Assets
-
A7.1.1 Is an inventory of all important assets drawn up and maintained?
-
A7.1.2 Are all information and assets associated with information facilities owned by a designated part of the organisation?
-
A7.1.3 Are rules for the acceptable use of information and assets associated with information processing facilities identified, documented and implemented?
A7.2 Information Classification
-
A7.2.1 Is information classified in terms of its value, legal requirements, sensitivity and criticality to the organisation?
-
A7.2.2 Is an appropriate set of procedures for information labelling and handling developed and maintained in accordance with the classification scheme adopted by the organisation?
Major non-conformances
Minor non-Conformances
Observations and opportunities for improvemement
Audit sign off
-
Auditee name:
-
Auditee signature:
-
Auditor name:
-
Auditor signature:
