The IT Law Wiki

Audit review

32,080pages on
this wiki
Add New Page
Add New Page Talk0

Definition Edit

An audit review is

[t]he assessment of an information system to evaluate the adequacy of implemented security controls, assure that they are functioning properly, identify vulnerabilities, and assist in implementation of new security controls where required. This assessment is conducted annually or whenever significant change has occurred and may lead to recertification of the information system.[1]

References Edit

  1. CNSSI 4009.

See also Edit

Also on Fandom

Random Wiki