-
Unified Compliance FAQs
-
Common Controls Hub FAQs
-
Compliance Dictionary FAQs
-
Research FAQs
-
Mapper FAQs
-
Resellers FAQs
-
Common Controls Hub Deep Dive
-
Mapper Deep Dive
- Cataloging Authority Documents
- Cataloging Private Authority Documents
- Map a Citation
- Tag Citation
- Match Citation to a Control
- Match a Citation to a Control (Private Authority Documents)
- Add Audit Question
- Citation Hierarchy
- Citation Hierarchy (Private Authority Documents)
- Add Dictionary Terms
- Asset
- Configurable Item
- Configuration Setting
- Data Content
- Organization
- Organizational Task
- Record Category
- Record Example
- Role
- Triggering Event
- Nonstandard Term
-
Mapper Guides
-
API Developers
-
Contact Support
What is an Audit Question?
An Audit Question is a formal interrogative phrase asking what was accomplished and whether it was accomplished according to formalized guidelines.
All Common Controls have at least one audit question explicitly created for the Common Controls.
UCF Audit Questions are created using custom-calculated questions called Audit Question Methods. Audit Question Methods begin with any of the following "examine, interview, observe, or test" and have a UCF element focus (i.e., cDoc, Role, Asset, Record Example, etc.)