Compliance Audit Pack — ISO 27001, SOC 2, NIS2, EU EED
Compliance Audit Pack
Struktive generates a six-sheet XLSX Compliance Audit Pack with every normalisation job. Chain-of-custody metadata, asset register, audit trail, duplicates register, exceptions log, and summary statistics — all in one file.
Frameworks covered
- ISO 27001 (asset inventory, classification, ownership)
- SOC 2 (asset tracking, change management evidence)
- PCI DSS (in-scope asset identification)
- EU EED Annex I (IT power consumption reporting)
- NIS2 (critical infrastructure asset register)
- IEC 62443 (OT/ICS asset inventory)
- NIST 800-82 (industrial control system asset management)
- TIA-942 (data centre infrastructure documentation)
What is in the audit pack
- Cover: Chain-of-custody block — job ID, source file hash, normaliser version, processing timestamp, record count, sign-off fields.
- Asset Register: All normalised records with before/after field values.
- Audit Trail: Field-level transformation log — every change recorded with confidence score.
- Duplicates Register: All detected duplicates with match type and confidence.
- Exceptions Log: Records below quality threshold, grouped by issue type.
- Summary Statistics: Category distribution, quality score histogram, vendor concentration, site breakdown.