This audit program sample provides general steps organizations can use to perform an email surveillance audit.

Sample steps include discussing the nature and scope of the audit with key personnel, discussing timing with key management, scheduling timing with the auditee, finalizing the audit program, scheduling staffing as appropriate, creating summary scorecards for each process reviewed, using the standard report template to create the internal audit report, holding closing meetings with key company management to review draft internal audit reports and findings, and publishing the final report and distributing it.