Corrective actions are structured processes for addressing and resolving identified issues or nonconformities, aiming to prevent recurrence and promote continuous improvement.
They may originate from routine business operations, or from internal or external reviews by regulators, auditors, or other governance functions.
What is a Corrective Action Plan?
A corrective action addresses a specific issue or deficiency through targeted measures. In contrast, a corrective action plan (CAP) is a comprehensive document that outlines multiple corrective actions, along with their timelines, responsible parties, and the steps required to ensure each item is systematically resolved.
Typically organisations establish their own definitions, terminology and processes for managing corrective actions which will align with their specific needs and frameworks.
Further reading
- Corrective Action Plan (CAP) - NIST Glossary; Corrective actions for an issuer for removing or reducing deficiencies or risks identified by the Assessor during the assessment of issuer operations. The plan identifies actions that need to be performed in order to obtain or sustain authorization.
- White Paper - Corrective action: The closed-loop system (BSI Group) (PDF)