Track findings to closure
Raise findings from tests with type and severity, capture root cause and corrective actions with owners and dates, and follow them to closed.
Try it in CybervergentOverview
Manage findings and corrective action plans from raise to verified closure.
Step-by-step
- 1 In the engagement, open the 'Tests' tab and raise a finding from a test that failed.
- 2 Set the finding type and severity, list the affected assets, and add the recommended remediation. For a non-conformity, set the remediation due date.
- 3 Have the auditee complete the action plan: root cause analysis, corrective action title and scope, completion date, and responsible personnel.
- 4 Monitor the findings summary for open versus closed and items requiring action.
- 5 Verify each corrective action before marking the finding closed, so closure reflects real remediation.
- 6 Watch finding recurrence and remediation time in 'Audit' then 'Assurance' to catch systemic issues.
Related articles
Internal Audit Run a risk-based internal audit cycle Take an audit from risk-weighted universe planning through fieldwork to an issued report. Internal Audit Do internal control over your entities Test the internal controls across your auditable entities through an internal control audit. Internal Audit Plan multi-year audit coverage Define a risk-prioritized plan that covers the universe over the cycle. Posture Management Manage your audit posture Establish audit coverage and prove a healthy, improving audit posture.