Procedure

A procedure is the step-by-step, repeatable instruction for carrying out a task — the operational “how” beneath a policy and its standards. Procedures are mandatory (unlike advisory guidelines), which is a favorite exam distinction. Well-written procedures deliver consistency under pressure, accelerate onboarding and training, and provide the evidence auditors look for that a control is actually performed the same way every time.