Audit Framework Library

Select frameworks

EIOPA Guidelines on System of Governance

FRC Corporate Governance Code

Guidelines on Prevention of Money Laundering and Countering the Financing of Terrorism

IIA Topical Requirement Cyber Security

IIA Topical Requirement Third party

Lloyds Principles for Doing Business

NIST Cyber security framework 2.0

Results for "sitemap.xml"

NIST Cyber security framework 2.0

RS.AN-06

Actions performed during an investigation are recorded, and the records’ integrity and provenance are preserved

NIST Cyber security framework 2.0

RS.MI-01

Incidents are contained

NIST Cyber security framework 2.0

RS.MI-02

Incidents are eradicated

NIST Cyber security framework 2.0

PR.DS-11

Backups of data are created, protected, maintained, and tested

NIST Cyber security framework 2.0

ID.IM-02

Improvements are identified from security tests and exercises

NIST Cyber security framework 2.0

PR.AA-06

Physical access to assets is managed, monitored, and enforced

NIST Cyber security framework 2.0

PR.PS-02

Software is maintained, replaced, and removed

NIST Cyber security framework 2.0

RS.MA-03

Incidents are categorized and prioritized

NIST Cyber security framework 2.0

PR.AA-05

Access permissions, entitlements, and authorizations are defined in a policy, managed, enforced, and reviewed, and incorporate the principles of least privilege and separation of duties

EIOPA Guidelines on System of Governance

Section 1, Guideline 1, 1.7

The system of governance should include an effective system for ensuring the transmission of information.