Scribd Logo
Upload

Welcome to Scribd!

  • Corrective Action Plan Template

    Uploaded by

    s_alfaizal
    577 views1 page
    CAPs must be submitted within 30 days of issuing the final audit report completion. CAPs should be combined into one cumulative summary agency CAP and submitted to Commonwealth Security quarterly.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    DOC, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    CAPs must be submitted within 30 days of issuing the final audit report completion. CAPs should be combined into one cumulative summary agency CAP and submitted to Commonwealth Security quarterly.

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    577 views1 page

    Corrective Action Plan Template

    Uploaded by

    s_alfaizal
    CAPs must be submitted within 30 days of issuing the final audit report completion. CAPs should be combined into one cumulative summary agency CAP and submitted to Commonwealth Security quarterly.

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    Corrective Action Plan and IT Security Audit Quarterly Summary Template

    Date _________
    PURPOSE: This Plan describes IT Security Audit findings; documents responsibility for addressing the findings; and describes
    progress towards addressing the findings. Provide enough information to enable the reader to understand the nature of the
    finding, the impacts, and the planned remedy.
    Audit Name: _____________________________
    Audit
    Finding
    No.

    Short Title

    Summary

    Agency1
    Concurs

    Planned Corrective Action


    or
    Mitigating Controls2

    Audit Name: _____________________________


    Audit
    Finding
    No.

    Short Title

    1
    2
    3
    4

    Summary

    Agency
    Concurs

    IT System(s)_________________________
    Responsible
    Person(s)

    Status3

    Due Date

    Exception on
    File4

    IT System(s)_________________________

    Planned Corrective Action


    or
    Mitigating Controls

    Responsible
    Person(s)

    Status

    Due Date

    Exception on
    File

    Agency Concurs: Concur or Does Not Concur


    If the Agency does not concur, the Mitigating Controls and Risk Acceptance must be stated in Planned Corrective Action.
    Status: NS = Not Started; U = Underway; C = Completed
    Exception on file for findings not compliant with COV Information Security Standard (SEC501): Y = Yes; N = No

    NOTE: CAPs must be submitted within 30 days of issuing the final audit report completion. All CAPs should be combined into
    one cumulative summary agency CAP and submitted to Commonwealth Security quarterly within 30 days of quarters end date
    to be counted.

    You might also like