I sometimes have to go to sites to carry out a network audit. This isn't a security audit such as a Penetration test but is more about assessing the setup of the network, servers and roles to recommend updates and changes that would help them perform better, improve redundancy consider DR and any other issues that come to mind. I also look at password policies etc and try to consider the elements of ISO 27001.
I'd be interested to know if anybody else does this type work and if so what they carry out (do they use a template), what tools they use and what they produce for the customer.
Thanks guys