Information Systems Audit Controls. Supplier shall develop audit requirements and activities involving checks on operational systems to minimize the risk of disruptions to business processes. An annual audit planning and scoping process shall exist and consider risk, involvement of technical and business staff, other ongoing projects, and business impacts that may impact the effectiveness of the audit.
Information Systems Audit Controls. Audit requirements and activities involving verification of operational systems are carefully planned and agreed to minimise disruptions to business processes.
Information Systems Audit Controls. [Core-13(b)]
