Home > IT Blogs > IT Governance, Risk, and Compliance/

IT Governance, Risk, and Compliance:

Assurance Service

123
March 1, 2010  6:41 PM

IT Audit Reporting: Communicating Results – Part VI



Posted by: Robert Davis
AA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement, Evidence, IFAC, Information Technology, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA, The IIC

The final audit report should clearly identify ‘gaps’ in controls and the source of the vulnerabilities. Of the potential vulnerabilities documented in the audit report, it is importance to identify any significant, or material, risks. It must also include recommendations to...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

February 25, 2010  7:56 PM

IT Audit Reporting: Communicating Results – Part V



Posted by: Robert Davis
Assurance Service, Attestation, Audit Assurance, Audit Opinion, Engagement, Evidence, IT Audit, Project Management, Reporting

Once the draft audit report is generated, it must be reviewed by key IT managers as well as key business managers. To facilitate this essential audit activity, the IT auditor can contact selected key audit area personnel for scheduling a ‘

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

February 22, 2010  6:13 PM

IT Audit Reporting: Communicating Results – Part IV



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement, Evidence, Finding Form, IFAC, IS Audit, ISACA, IT Audit, PM, Project Management, Reporting, The IIA, The IIC

Generally, following audit area findings assessment completion and ensuring appropriate working papers retention, an IT auditor documents the draft audit report based on auditing standards and...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

February 18, 2010  7:33 PM

IT Audit Reporting: Communicating Results – Part III



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement, Evidence, IFAC, Information Technology, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA

Through an IT auditor’s efforts, audit findings are facts generated which directly support and evidence conclusions as well as recommendations. Audit findings are also the product of all previously performed audit work...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

February 15, 2010  7:18 PM

IT Audit Reporting: Communicating Results – Part II



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Degree of Correspondence, Engagement, Evidence, IFAC, Information Technology, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA, The IIC

The process utilized to ascertain ‘the degree of correspondence’ between assertions, or

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

February 11, 2010  7:05 PM

IT Audit Reporting: Communicating Results – Part I



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, CIA, CICA, CISA, CITP, CPA, Engagement, Evidence, IFAC, Information Technology, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA

IT audit area reporting conveys an opinion concerning control adequacy based on planning, studying, testing and...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

February 4, 2010  6:50 PM

IT Audit Fieldwork: Generally Accepted Processes – Part VII



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CA, CIA, CICA, CISA, CITP, Compliance Testing, CPA, Evidence, Files, Information Technology, Infrastructure, IT, IT Audit, PM, Programs, Project Management, Risk Management, Substantive Testing

Compliance and substantive testing to collect sufficient evidential matter to render an opinion on the audit area follows the

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

January 28, 2010  4:56 PM

IT Audit Fieldwork: Generally Accepted Processes – Part V



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CA, CIA, CICA, CISA, CITP, Compliance Testing, CPA, Files, GRC, Information Technology, Infrastructure, IT, IT Audit, PM, Procedures, Program, Project Management, Risk Management, Study, Substantive Testing

Concepts and procedures involved in the auditor’s study and evaluation of controls for manual systems are also applicable when processing is performed by IT. Commonly, a primary objective of the...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

January 25, 2010  4:35 PM

IT Audit Fieldwork: Generally Accepted Processes – Part IV



Posted by: Robert Davis
AA, AICPA, Applications, Assurance Service, Audit Assurance, Audit Fieldwork, CIA, CICA, CISA, Compliance Testing, Computer, EDI, Electronic Data Interchange, IFAC, Information Technology, Infrastructure, ISACA, IT Audit, Program, Project Management, Risk Management, Substantive Testing, The IIA

Collection of sufficient evidential matter required for compliance with the third generally accepted standard of audit fieldwork affects the IT auditor as to the type of evidence to be collected and as...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

January 21, 2010  10:04 PM

IT Audit Fieldwork: Generally Accepted Processes – Part III



Posted by: Robert Davis
AA, AICPA, Applications, Assurance Service, Audit Assurance, CIA, CICA, CISA, Compliance Testing, Files, Information Technology, Infrastructure, ISACA, IT Audit, Program, Project Management, Risk Management, Study, Substantive Testing, The IIA

The second generally accepted standard of audit fieldwork requires the study and evaluation of controls. Potential...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

123