IT Governance, Risk, and Compliance:

Evidence


April 5, 2010  5:57 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part VIII



Posted by: Robert Davis
Assurance Service, Attestation, Audit Report, Evidence, Follow-up Procedures, IT Audit

Follow-up activities are essential to enabling continuous improvement in IT governance. IT audit must ensure follow-up activities are completed in a timely manner to reduce the cited risks to the entity’s operations. Nevertheless, management must...

April 1, 2010  6:56 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part VII



Posted by: Robert Davis
AICPA, American Institute of Certified Public Accountants, Assurance Service, Attestation, Audit Committee, Audit Report, Evidence, Follow-up Procedures, IFAC, Information Systems Audit and Control Association, International Federation of Accountants, ISACA, IT Audit, Project Management, The IIA, The IIC, The Institute for Internal Controls, The Institute of Internal Auditors

A report on the status of follow-up activities, including agreed-upon recommendations not implemented, should be presented to the audit committee, if one has been established, or alternatively to the most


March 29, 2010  6:00 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part VI



Posted by: Robert Davis
Accounting Principles, AICPA, Assurance Service, Attestation, Audit Report, Evidence, Follow-up Procedures, IFAC, Information Systems Audit and Control Association, Institute of Certified Public Accountants, International Federation of Accountants, ISACA, IT Audit, Project Management, The IIA, The IIC, The Institute for Internal Controls, The Institute of Internal Auditors

Control follow-up are activities pursued when an exception condition is identified and reported as presenting a risk to the entity. As a part of the follow-up activities, the...


March 25, 2010  8:25 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part V



Posted by: Robert Davis
AICPA, American Institute of Certified Public Accountants, Assurance Service, Attestation, Audit Report, Evidence, Follow-up Procedures, IFAC, Information Systems Audit and Control Association, International Federation of Accountants, ISACA, IT Audit, Procedures, Project Management, The IIA, The IIC, The Institute for Internal Controls, The Institute of Internal Auditors

IT audit area follow-up takes into account the materiality of reported findings and the impact if corrective action is not taken. As particulars, follow-up nature, timing and extent are dependent on


March 22, 2010  6:29 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part IV



Posted by: Robert Davis
AA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement Letter, Evidence, Finding Form, Follow-up Activities, Information Technology, IT Audit, Project Management, Reporting

Depending on the ambit and terms of the engagement,...


March 18, 2010  5:33 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part III



Posted by: Robert Davis
AICPA, American Institute of Certified Public Accountants, Assurance Service, Attestation, Audit Report, CA, CIA, CICA, CISA, CITP, CPA, Evidence, Follow-up Procedures, IFAC, Information Systems Audit and Control Association, International Federation of Accountants, ISACA, IT Audit, Management Response, Project Management, The IIA, The IIC, The Institute for Internal Controls, The Institute of Internal Auditors

IT auditor follow-up activities has been defined "as a process by which they determine the adequacy, effectiveness and timeliness of actions taken by management on reported engagement observations and recommendations, including...


March 15, 2010  4:40 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part II



Posted by: Robert Davis
AICPA, American Institute of Certified Public Accountants, Assurance Service, Attestation, Audit Report, Evidence, Follow-up Procedures, IFAC, Information Systems Audit and Control Association, International Federation of Accountants, ISACA, IT Audit, Procedures, Project Management, The IIA, The IIC, The Institute for Internal Controls, The Institute of Internal Auditors

If management’s proposed actions to implement or otherwise address reported recommendations have been discussed with, or provided to, an IT auditor;...


March 11, 2010  7:41 PM

IT Audit Follow-up: Assessing Recommendation Resolution – Part I



Posted by: Robert Davis
AICPA, American Institute of Certified Public Accountants, Assurance Service, Attestation, Evidence, Follow-up Procedures, IFAC, Information Systems Audit and Control Association, International Federation of Accountants, ISACA, IT Audit, Procedures, Project Management, The IIA, The IIC, The Institute for Internal Controls, The Institute of Internal Auditors

While management is responsible for addressing assurance engagement findings and recommendations as well as tracking resolution status; audit is responsible for establishing policies, procedures, standards and rules for follow-up to determine whether


March 8, 2010  9:40 PM

IT Audit Reporting: Communicating Results – Part VIII



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Evidence, IFAC, Information Criteria, ISACA, Project Management, Reporting, The IIA, The IIC

IT auditors, like all auditors, are responsible for ‘communicating results to interested individuals.’ Interested individuals can include other members of the audit team, who must integrate the IT auditor’s findings with other aspects of the audit, as well as the client. ...


March 4, 2010  6:48 PM

IT Audit Reporting: Communicating Results – Part VII



Posted by: Robert Davis
AA, AICPA, Assurance Service, Attestation, Audit Assurance, Audit Charter, Audit Opinion, CA, Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Public Accountant, Chartered Accountant, CIA, CICA, CISA, CITP, CPA, Engagement Letter, Evidence, IFAC, ISACA, IT, IT Audit, PM, Project Management, Reporting, The IIA, The IIC

Upon acknowledgement of final audit report delivery to identified recipients, the IT auditor should await responses from key audit area personnel, as stipulated in the entity’s


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: