MyBizBox
Business OS
Governance & ComplianceCompany Policies

Cyber Security Audit Agreement

This document outlines the agreement between a company and an external auditor for conducting a cyber security audit. It defines the scope of the audit, responsibilities, and terms of engagement.

Updated 15d ago
cyber securityauditagreementinformation securitydata protectionSMESouthern Africa
Download Preview & customize

Company Letterhead

{{company_name}}

{{company_address}}

Phone: {{phone}}

Email: {{email}}

Website: {{website}}

Date

{{date}}

Parties

This Cyber Security Audit Agreement ("Agreement") is made and entered into on {{date}}, by and between:

**{{client_company_name}}**, a company duly incorporated and existing under the laws of {{client_country}}, with its principal place of business at {{client_company_address}} ("Client"), and

**{{auditor_company_name}}**, a company duly incorporated and existing under the laws of {{auditor_country}}, with its principal place of business at {{auditor_company_address}} ("Auditor").

Collectively referred to as “the Parties”.

Introduction

The Client wishes to engage the Auditor to conduct a comprehensive cyber security audit of its information systems and infrastructure. The Auditor agrees to perform such services in accordance with the terms and conditions set forth in this Agreement.

Scope of Work

The Auditor shall perform a cyber security audit which will include, but not be limited to, the following activities:

1. **Vulnerability Assessment:** Identification of potential weaknesses in the Client's systems and applications.

2. **Penetration Testing:** Simulating real-world attacks to identify exploitable vulnerabilities.

3. **Configuration Review:** Assessment of security configurations of network devices, servers, and applications.

4. **Policy and Procedure Review:** Evaluation of existing cyber security policies, procedures, and controls.

5. **Compliance Review:** Assessment against relevant industry standards and regulatory requirements (e.g., POPIA, GDPR where applicable).

6. **Reporting:** Provision of a detailed report outlining findings, risks, and recommendations.

Auditor's Responsibilities

The Auditor shall:

1. Conduct the audit with due care, skill, and professionalism, using generally accepted auditing standards and methodologies.

2. Maintain strict confidentiality of all information accessed during the audit.

3. Provide the Client with regular updates on the audit progress.

4. Deliver a comprehensive audit report within {{report_delivery_days}} days of completing the on-site audit.

Client's Responsibilities

The Client shall:

1. Provide the Auditor with timely access to all necessary systems, personnel, documentation, and facilities.

2. Designate a primary point of contact for the Auditor.

3. Ensure that all necessary internal approvals and permissions are obtained for the audit activities.

4. Cooperate fully with the Auditor to facilitate the audit process.

Fees and Payment

The Client agrees to pay the Auditor a total fee of {{audit_fee_amount}} ({{audit_fee_currency}}) for the services rendered, payable as follows:

1. {{upfront_payment_percentage}}% ({{upfront_payment_amount}}) upon signing of this Agreement.

2. The remaining {{balance_payment_percentage}}% ({{balance_payment_amount}}) upon delivery of the final audit report.

All payments shall be made within {{payment_terms_days}} days of invoice receipt.

Confidentiality

Both Parties agree to keep all non-public information exchanged during the course of this Agreement confidential and not to disclose such information to any third party without the prior written consent of the other Party, except as required by law.

Limitation of Liability

The Auditor's liability for any claims arising out of or in connection with this Agreement shall be limited to the total fees paid by the Client to the Auditor under this Agreement.

Governing Law and Dispute Resolution

This Agreement shall be governed by and construed in accordance with the laws of {{governing_law_country}}. Any disputes arising out of or in connection with this Agreement shall be resolved through good faith negotiations between the Parties. If a resolution cannot be reached, the dispute shall be submitted to mediation in {{mediation_city}}, and failing that, to arbitration in {{arbitration_city}} in accordance with the rules of {{arbitration_body}}.

Entire Agreement

This Agreement constitutes the entire agreement between the Parties with respect to the subject matter hereof and supersedes all prior discussions, negotiations, and agreements, whether written or oral.

Signature Block

IN WITNESS WHEREOF, the Parties have executed this Agreement as of the date first above written.

**For {{client_company_name}}:**

_____________________________

Name: {{client_signatory_name}}

Title: {{client_signatory_title}}

**For {{auditor_company_name}}:**

_____________________________

Name: {{auditor_signatory_name}}

Title: {{auditor_signatory_title}}

PreviousCustomer Service VS Customer ExperienceNext Cyber Security Policy

Related templates

Graphic Design Brief

Template from the Marketing catalogue. Edit to customise.

1
2w ago

Annual General Meeting Notice

This document provides a template for an Annual General Meeting (AGM) notice, informing shareholders of the meeting details and agenda.

AGMNoticeShareholders
2w ago

Director Code of Conduct

A document outlining the expected standards of behaviour and ethical conduct for directors of a company.

DirectorCode of ConductGovernance
2w ago

Board Resolution Approving Acquisition of Business Assets

This template provides a formal board resolution for a company to approve the acquisition of business assets. It should be used when the board of directors needs to officially sanction the purchase of assets from another entity.

board resolutionacquisitionassets
3d ago