9.2 Internal audit

Entry 9.2 requires the organization to conduct planned internal audits of its IT service management system at defined intervals, ensuring that processes conform to the standard's requirements and are effectively implemented. Audit results must be recorded, reported to management, and used to drive corrective actions and continual improvement.