Auditing IT Governance – Part VI
Posted by: Robert Davis
Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, External Audit, Internal Audit, IT Audit, ITG, Performance Measurement, Resource Management, Risk Management, Strategic Alignment, Value Delivery
Interpretively, an entity’s information systems represent the infrastructure to collect data, process transactions, and communicate operational results. In other words, an entity’s MIS represents the aggregation of personnel, computer hardware and software, with associated policies and procedures, allowing data processing to generate utilizable information for decision-making. For example, how the organization runs the entity’s mainframe, employs contractors, purchases hardware, and charges customers are MIS subject elements.
Control procedures should be considered performance processes for accomplishing control goals and/or objectives. Control procedures document and attempt to assure management’s operational intentions are carried out. Similar to policies, control procedures should provide for organizational assets safeguarding as well as promote effectiveness and efficiency.
“View Part I of the Auditing IT Governance series here“
Comment
RSS Feed
Email a friend
