Internal audit findings
Assign topic to the user
Answer:
ISO 20000 contains many required records ,documents or other information. So, it's hard to generalize. In e.g. Incident Management or Change Management processes - you will look for tickets related to incidents i.e. changes. Same for Problem Management. Availability or Capacity Management will require measurements - so you'll look for measurement files.
Further on, Configuration Management requires CMDB. So, you need to check whether it exists, in which form, does it fulfill standard's requirements...etc. CIs need to have recorded incidents and changes...so, these are all items you need to check.
Also, see these articles to learn more:
"ISO 20000 internal audit – What is it and why is it important?" https://advisera.com/20000academy/blog/2016/06/07/iso-20000-internal-audit-what-is-it-and-why-is-it-important/
"What is the purpose of the internal audit report in ISO 20000?" https://advisera.com/20000academy/blog/2017/03/07/what-is-the-purpose-of-the-internal-audit-report-in-iso-20000/
Comment as guest or Sign in
Jan 10, 2018