Turkey Introduces Compliance Audit Checklist for Public Institutions

===========================================================

In an effort to boost transparency and accountability, Turkey has launched a new Information and Communication Security Compliance and Audit Monitoring System (BİGDES) to monitor compliance with guidelines by public institutions and organizations.

Background

The system was introduced on January 4th, 2023, in accordance with Circular No. 2019/12, which requires public institutions and organizations to conduct information and communication security guideline audits.

How it Works

Under the new system:

• Authorized users can submit audit results and relevant documents through BİGDES using various methods.
  • Enter data directly into the system for Annex A: Audit Team Information.
  • Process data in a sample Excel template for:
    • Annexes B: Asset Groups and Audit Scope
    • Annex E: Effectiveness Status of the Guideline Implementation Process
    • Annex F: Effectiveness Status of the Measure
    • Annex H: Audit Opinion
• Upload audit results directly to the system in .pdf format.

Implications

The introduction of BİGDES is seen as a step towards enhancing accountability and transparency among public institutions and organizations in Turkey. By providing a standardized checklist for compliance audits, the system aims to promote good governance and ensure that public institutions are held accountable for their actions.