DRJ Fall 2019

Conference & Exhibit

Attend The #1 BC/DR Event!

Fall Journal

Volume 32, Issue 3

Full Contents Now Available!

Wednesday, 07 July 2010 13:21

How to Survive a BCM Audit

Written by  GEOFFREY WOLD, CISA, CGEIT, CPA, CMA, CMC, CDP, CSP, CFSA, CIRM

This article describes the approaches used for the various types of business continuity management (BCM) audits and how audits impact the business continuity planner. It also describes the most common weaknesses found in business continuity plans. And lastly, it presents a road map to prepare for a BCM audit.BCM Audit DefinitionThe most general definition of an audit is an evaluation of a person, organization, system, process, project, or product. A BCM audit is an independent evaluation of the business continuity management program or its components by internal or external independent parties.Types of AuditorsThere are several types of auditors such as internal auditors, external auditors, and compliance auditors. Internal auditors are employees of a company that assess and evaluate its systems of internal control. A business continuity plan is considered to be an important component of an internal control system. To maintain independence, they present their reports directly to the board of