Recommended operational flow

This sequence describes how to implement and operate Mawidabp step by step. The first steps are initial setup (done once); the last ones form the recurring audit cycle.

Implementation steps

1. Create the organization

Define name, URL prefix, and logo. If you work with several related organizations, you can mark one as corporate to give it cross-cutting access. See Organization and units.

2. Define organizational and business units

Map the company's auditable structure: organizational units as groupers and business units as concrete auditable elements. This determines how projects will be distributed across the plan.

3. Configure users and profiles

Create users and assign profiles (audit manager, supervisor, senior auditor, auditor, PAI, auditee). If there is a corporate identity provider, integrate it before this step so onboarding is automatic. See Users and profiles.

4. Configure the identity integration (optional)

Connect Mawidabp with Microsoft Entra ID, Google Workspace, or LDAP as appropriate.

5. Load best practices and templates

Populate the best practices library (risk matrices, COBIT, COSO, ISO 27001, or other internal standards) and, optionally, the risk-assessment templates and issue templates.

6. Adjust parameters and notifications

Review default settings: due dates, expiration policies, signatures, automatic notifications. See Parameters and Notification settings.

7. Define period and work plan

Create the period (yearly, semiannual, whatever applies), optionally do the risk assessment, and build the work plan with the projects to execute. See Planning.

8. Execute the reviews

For each project in the plan, create a review, assign users, define the workflow, document working papers, and record findings. See Execution.

9. Conclude with draft and final audit reports

Issue the draft audit report for validation with the auditee, and then the final audit report once everything is agreed upon. See Conclusion.

10. Follow up on findings

Support the auditee through the implementation of the action plan, review the evidence, and close findings. See Follow-up.

11. Measure with surveys (optional)

Send satisfaction surveys to auditees as you close each review to feed continuous improvement. See Surveys.

tip

Steps 1 to 6 are initial setup, done once. Steps 7 to 11 form the recurring cycle that repeats every audit period.

Implementation steps​

1. Create the organization​

2. Define organizational and business units​

3. Configure users and profiles​

4. Configure the identity integration (optional)​

5. Load best practices and templates​

6. Adjust parameters and notifications​

7. Define period and work plan​

8. Execute the reviews​

9. Conclude with draft and final audit reports​

10. Follow up on findings​

11. Measure with surveys (optional)​