Audit Checklist

Per-control audit verification items. Everything needed to demonstrate each control is operating effectively and to the standard defined in the framework.

Inventory and Control of Enterprise Assets

5 safeguards · 40 checklist items

Inventory and Control of Software Assets

7 safeguards · 49 checklist items

Data Protection

14 safeguards · 92 checklist items

Secure Configuration of Enterprise Assets and Software

12 safeguards · 87 checklist items

Account Management

6 safeguards · 40 checklist items

Access Control Management

8 safeguards · 64 checklist items

Continuous Vulnerability Management

7 safeguards · 47 checklist items

Audit Log Management

12 safeguards · 95 checklist items

Email and Web Browser Protections

7 safeguards · 53 checklist items

Malware Defenses

7 safeguards · 50 checklist items

Data Recovery

5 safeguards · 42 checklist items

Network Infrastructure Management

8 safeguards · 50 checklist items

Network Monitoring and Defense

11 safeguards · 85 checklist items

Security Awareness and Skills Training

9 safeguards · 71 checklist items

Service Provider Management

7 safeguards · 58 checklist items

Application Software Security

14 safeguards · 117 checklist items

Incident Response Management

9 safeguards · 75 checklist items

Penetration Testing

5 safeguards · 35 checklist items