Management Action Plan
Detects management action plans documenting remediation timelines for audit findings and vulnerabilities.
- Type
- keyword_list
- Confidence
- medium
- Confidence justification
- Medium confidence: keyword-based detection requires corroborative evidence for accurate identification.
- Jurisdictions
- au
- Regulations
- IPA 2009 (Qld), Privacy Act 1988 (Cth), SOCI Act 2018 (Cth)
- Frameworks
- DISP, ISO 27001, NIST CSF
- Data categories
- audit, governance
- Scope
- narrow
- Risk rating
- 7
Should match
Management action plan: remediation plan with due date and responsible officer— Test match 1MAP implementation status: corrective action and target completion dates— Test match 2Management response to audit finding with risk treatment and finding closure— Test match 3
Should not match
Action plan for the marketing campaign— Non-match 1Management meeting agenda— Non-match 2
Known false positives
- Generic action plan in non-audit contexts. Mitigation: Require audit-specific terms like remediation, finding closure, or management response.