Internal Auditors

From BCMpedia. A Wiki Glossary for Business Continuity Management (BCM) and Disaster Recovery (DR).
Revision as of 20:16, 10 April 2023 by Moh heng (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
1. Internal Auditors are organization's in-house team of auditors.
BL-A-5 click to know more


Notes (1): They are responsible primarily for evaluating the effectiveness of internal control systems and contributing to their ongoing effectiveness by providing advice and support to Executive Management.

Notes (2): In auditing ISO22301, internal audits are referred to as first party audits. Organizations use internal first party audits to audit themselves for internal purposes. This audit need not be conducted in-house as it can be carried out by an external organization. The use of first party audits to declare that the organization complies with the standard. This is called a self-declaration.

Notes (3): An internal audit of the BCMS requires a review of BCM arrangements together with the elements of the management systems.


Related Terms: Audit. First Party Audit, Second Party Audit, Third Party Audit

Similar Term: Internal Audit; Auditor; Reviewer; Lead Auditor; External Auditors



BCMBoK Competency Level
BCMBoK 7: Program Management CL 2A: Intermediate (Audit)



BCMBoK Competency Level
BCMBoK 7: Program Management CL 2OR: Intermediate (OR)


Click to know more about expert level training

(Source: Business Continuity Management Institute - BCM Institute)

A Manager’s Guide to Auditing & Reviewing Your Business Continuity Management Program