Difference between revisions of "Internal Audit"

From BCMpedia. A Wiki Glossary for Business Continuity Management (BCM) and Disaster Recovery (DR).
Jump to navigation Jump to search
m
(One intermediate revision by one other user not shown)
Line 3: Line 3:
 
|-
 
|-
 
| '''1.''' Internal [[Audit|Audit]] is an ongoing internal independent and objective appraisal of the [[Organization|organization]]’s operational activity in accordance to the [[Business_Continuity_Management_System_(BCMS)|BCMS]] requirement.  
 
| '''1.''' Internal [[Audit|Audit]] is an ongoing internal independent and objective appraisal of the [[Organization|organization]]’s operational activity in accordance to the [[Business_Continuity_Management_System_(BCMS)|BCMS]] requirement.  
<br/> '''''Notes''''': During an internal audit, [[Internal_Auditors|internal auditors]] will evaluate and monitor a organization’s risk management, reporting, and control practices and make suggestions for improvement.<br/> <br/> {{BcmBoK 7 CL 2A}}<br/> <br/> [[File:WCCSG 2016 GooglePlus.jpg|thumb|right|300px|WCCSG 2016 GooglePlus.jpg]] [[File:A Managers Guide to Auditing v1.1.jpg|thumb|left|140px|'''A Manager's Guide to Auditing and Reviewing Your Business Continuity Management Program''' (2009)]]<br/> '''Courses: ISO 22301 BCMS Audit'''
+
<br/> '''''Notes''''': During an internal audit, [[Internal_Auditors|internal auditors]] will evaluate and monitor a organization’s risk management, reporting, and control practices and make suggestions for improvement.<br/> <br/> {{BcmBoK 7 CL 2A}}<br/> <br/> {{WCC H}} [[File:A Managers Guide to Auditing v1.1.jpg|thumb|left|140px|'''A Manager's Guide to Auditing and Reviewing Your Business Continuity Management Program''' (2009)]]<br/> '''Courses: ISO 22301 BCMS Audit'''
  
 
*Attend: [https://www.bcm-institute.org/courses/iso-22301-bcms-audit-certification-courses/bcm-8030-iso-22301-business-continuity-management-systems-auditor/ BCM-8030: ISO 22301 BCMS Auditor] leading to [http://www.bcm-institute.org/certification/business-continuity-certified-auditor-bcca BCCA]  
 
*Attend: [https://www.bcm-institute.org/courses/iso-22301-bcms-audit-certification-courses/bcm-8030-iso-22301-business-continuity-management-systems-auditor/ BCM-8030: ISO 22301 BCMS Auditor] leading to [http://www.bcm-institute.org/certification/business-continuity-certified-auditor-bcca BCCA]  
*Attend: [http://www.bcm-institute.org/courses/iso-22301-bcms-lead-auditor BCM-8530: ISO 22301 BCMS Lead Auditor] leading to [http://www.bcm-institute.org/certification/business-continuity-certified-lead-auditor-bccla BCCLA]  
+
*Attend: [https://www.bcm-institute.org/courses/iso-22301-bcms-audit-certification-courses/bcm-8530-iso-22301-business-continuity-management-lead-auditor/ BCM-8530: ISO 22301 BCMS Lead Auditor] leading to [http://www.bcm-institute.org/certification/business-continuity-certified-lead-auditor-bccla BCCLA]  
  
 
'''Courses: BCM Certification'''
 
'''Courses: BCM Certification'''

Revision as of 07:43, 13 September 2018

1. Internal Audit is an ongoing internal independent and objective appraisal of the organization’s operational activity in accordance to the BCMS requirement.


Notes: During an internal audit, internal auditors will evaluate and monitor a organization’s risk management, reporting, and control practices and make suggestions for improvement.

BCMBoK Competency Level
BCMBoK 7: Program Management CL 2A: Intermediate (Audit)


A Manager's Guide to Auditing and Reviewing Your Business Continuity Management Program (2009)

Courses: ISO 22301 BCMS Audit

Courses: BCM Certification

(Source: Business Continuity Management Institute - BCM Institute)

2. Information required to be controlled and maintained by an organization and the medium on which it is contained.

Note: In many cases, particularly in smaller organizations, independence can be demonstrate by the freedom from responsibility for the activity being audited.

(Source: ISO 22301:2012 – Societal Security – Business Continuity Management Systems - Requirements) - clause 3.22

3. Audit conducted by, or on behalf of, the organization itself for management review and other internal purpose, and which might form the basis for an organization’s self declaration on conformity.

(Source: AE/HSC/NCEMA 7000:2012)

4. Internal Audit is an independent, objective assurance and consulting activity designed to add value and improve an organization’s operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.

(Source: AS/NZS 5050.3 Australian and New Zealand Standards for business continuity management.

Part 3: Business continuity management audit and assurance standard)

5. Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization's operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.

(Source: http://www.theiia.org Institute of Internal Auditors)

6. Internal Audit is a systematic investigation of the intent, implementation and effectiveness of selected aspects of the systems of an organization or one or more of its departments.

(Source: hhtp://elsmar.com)