IT Governance, Risk, and Compliance:

Audit Assurance


August 7, 2012  5:48 PM

Are Organizations Potentially Falling Short?



Posted by: Robert Davis
Accountability, Accounting, Application Portfolio Management, Asset Management, Audit Assurance, Audit Committee, Certified Information Systems Auditor, Change Control, Change Management, Control Processes, Decision Making, Enterprise Governance, ERP, Fiduciary Responsibility, Governance Tree, IT Governanace, Life Cycle Management, Organizational Structure, Project Management, Risk Management, Value Delivery

Current events posted by various news outlets, including Fox News, the Wall Street Journal, Forbes and Yahoo.com, concerning Knight Capital’s financial debacle, present some very serious allegations regarding managerial due diligence during system development...

March 22, 2010  6:29 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part IV



Posted by: Robert Davis
AA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement Letter, Evidence, Finding Form, Follow-up Activities, Information Technology, IT Audit, Project Management, Reporting

Depending on the ambit and terms of the engagement,...


March 8, 2010  9:40 PM

IT Audit Reporting: Communicating Results – Part VIII



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Evidence, IFAC, Information Criteria, ISACA, Project Management, Reporting, The IIA, The IIC

IT auditors, like all auditors, are responsible for ‘communicating results to interested individuals.’ Interested individuals can include other members of the audit team, who must integrate the IT auditor’s findings with other aspects of the audit, as well as the client. ...


March 4, 2010  6:48 PM

IT Audit Reporting: Communicating Results – Part VII



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Charter, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement Letter, Evidence, IFAC, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA, The IIC

Upon acknowledgement of final audit report delivery to identified recipients, the IT auditor should await responses from key audit area personnel, as stipulated in the entity’s


March 1, 2010  6:41 PM

IT Audit Reporting: Communicating Results – Part VI



Posted by: Robert Davis
AA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement, Evidence, IFAC, Information Technology, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA, The IIC

The final audit report should clearly identify ‘gaps’ in controls and the source of the vulnerabilities. Of the potential vulnerabilities documented in the audit report, it is importance to identify any significant, or material, risks. It must also include recommendations to...


February 25, 2010  7:56 PM

IT Audit Reporting: Communicating Results – Part V



Posted by: Robert Davis
Assurance Service, Attestation, Audit Assurance, Audit Opinion, Engagement, Evidence, IT Audit, Project Management, Reporting

Once the draft audit report is generated, it must be reviewed by key IT managers as well as key business managers. To facilitate this essential audit activity, the IT auditor can contact selected key audit area personnel for scheduling a ‘


February 22, 2010  6:13 PM

IT Audit Reporting: Communicating Results – Part IV



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement, Evidence, Finding Form, IFAC, IS Audit, ISACA, IT Audit, PM, Project Management, Reporting, The IIA, The IIC

Generally, following audit area findings assessment completion and ensuring appropriate working papers retention, an IT auditor documents the draft audit report based on auditing standards and...

Bookmark and Share     0 Comments     RSS Feed     Email a friend


February 18, 2010  7:33 PM

IT Audit Reporting: Communicating Results – Part III



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement, Evidence, IFAC, Information Technology, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA

Through an IT auditor’s efforts, audit findings are facts generated which directly support and evidence conclusions as well as recommendations. Audit findings are also the product of all previously performed audit work...


February 15, 2010  7:18 PM

IT Audit Reporting: Communicating Results – Part II



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Degree of Correspondence, Engagement, Evidence, IFAC, Information Technology, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA, The IIC

The process utilized to ascertain ‘the degree of correspondence’ between assertions, or


February 11, 2010  7:05 PM

IT Audit Reporting: Communicating Results – Part I



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, CIA, CICA, CISA, CITP, CPA, Engagement, Evidence, IFAC, Information Technology, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA

IT audit area reporting conveys an opinion concerning control adequacy based on planning, studying, testing and...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: