The audit interval only starts when every one of the controls are set up and all elements of information security are doing as built. The business finalizes the CPA firm or impartial auditors and in collaboration, they decide the beginning day and the period of the audit interval. Last but https://www.nathanlabsadvisory.com/blog/nathan/secure-federal-contracts-with-fisma-compliance/