Auditing Proposal

Requirement Gathering Form

Auditing Services Form

1- General Information

Full legal name of the organisation.

Name of the primary contact for the auditing project.

Position of the contact person.

Email Address:

Phone or Mobile Number:

Company Physical Address:

Website:

Type of industry

Number of Employees

Annual Revenue

2- Auditing Service

Type of Auditing Service Required

Type of management system (e.g., ISO 9001, ISO 14001, ISO 45001, ISO 21001 or integerated)

Scope of the audit (e.g., specific departments, processes, or locations)

Scope of the ISMS (e.g., IT infrastructure, data security, compliance with ISO 27001)

Current ISMS certification status (if applicable).

Regulatory or industry standards to be audited (e.g., NDIS, ISO, GDPR)

Specific compliance requirements to be assessed

Type of management system (e.g., ISO 9001, ISO 14001, ISO 45001, ISO 21001, ISO 27001)

Current state of the management system (e.g., no system in place, partial implementation)

Scope of the NDIS audit (e.g., compliance with NDIS Practice Standards)

Current NDIS certification status (if applicable)

3- Budget and Timeline

Approximate budget allocated for the audit.

Preferred Timeline:

When does the client want the audit to be conducted?

Is there a specific deadline or urgency?

Frequency of Audits:

Is this a one-time audit, or will it be part of an ongoing audit program?

If ongoing, what is the preferred frequency (e.g., quarterly, annually)?

4. Reporting and Follow-Up

Audit Report Requirements:

What level of detail is required in the audit report?

Should the report include recommendations for improvement?

Follow-Up Actions:

Will the client require assistance with implementing corrective actions?

Should the auditor conduct a follow-up audit to verify corrective actions?

5. Additional Information

Special Requirements:

Are there any special requirements (e.g., accessibility needs, confidentiality agreements)?

Previous Audit Experience:

Has the organisation conducted similar audits in the past?

If yes, what worked well, and what could be improved?

Declaration

Be assured that the organisation’s information will be kept confidential.

The organisation authorises the consultant to proceed with the assessment.