Audit plan
A security audit has the main objectives to:
Check the existence security policy, standards, guidelines and procedures;
Identify the inadequacies and examine the effectiveness of the existing policy, standards, guidelines and procedures;
Identify and understand the existing vulnerabilities and risks;
Review existing security controls on operational, administrative and managerial issues, and ensure compliance to minimum security standards;
Provide recommendations and corrective actions for improvements.