IT Governance, Risk, and Compliance

Feb 21 2012   9:28PM GMT

Auditing IT Governance – Part IV

Robert Davis Robert Davis Profile: Robert Davis

IT governance audits normally have an organizational focus. ‘Organizational-based’ IT governance audits examine deployed frameworks, managerial issues, and departmental activities. However, if during ‘organizational-based’ planning the IT auditor discovers a governance framework is not deployed, the audit planner should utilize the COBIT framework as a minimum basis for setting detail objectives.

Alternatively, IT governance may be within the ambit of other IT audit areas. Under these circumstances, a ‘results-based’ audit may be appropriate. Quantitatively, ‘results-based’ audits can address performance issues utilizing goal and performance indicators as measurement standards. Qualitatively, ‘results-based’ audits can also provide audit area governance knowledge and practices assessments. Whatever ‘results-based’ audit measurement standards utilized, IT governance effectiveness is the primary auditable unit audit objective.

View Part I of the Auditing IT Governance series here

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: