Home > IT Blogs > IT Governance, Risk, and Compliance/

IT Governance, Risk, and Compliance:

Information Technology

1234
January 14, 2010  8:01 PM

IT Audit Fieldwork: Generally Accepted Processes – Part I



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CIA, CICA, CISA, CITP, Compliance Testing, CPA, Files, Information Technology, Infrastructure, IT, IT Audit, PM, Program, Project Management, Risk Management, Study, Substantive Testing

IT auditing is similar to, and yet different from, auditing manual systems. The process is similar in that compliance and substantive tests are still performed within the context of

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

January 11, 2010  6:21 PM

IT Audit Verification Planning: Resolving Technique Selection – Part VII



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CI, CIA, CICA, CISA, CITP, Compliance Testing, Configuration Item, Files, Information Asset, Information Technology, Infrastructure, IT, IT Audit, PM, Program, Project Management, Risk Management, Substantive Testing, Testing Techniques

Many techniques are available to the IT auditor. A significant responsibility is selecting a technique appropriate to the audit task at hand. To aid the IT auditor in understanding which technique...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

January 7, 2010  7:30 PM

IT Audit Verification Planning: Resolving Technique Selection – Part VI



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CI, CIA, CICA, CISA, CITP, Compliance Testing, Configuration Item, Files, Information Asset, Information Technology, Infrastructure, IT, IT Audit, PM, Program, Project Management, Risk Management, Substantive Testing, Testing Techniques

Characteristics of a deployed audit trail can determine the test procedures performed. With an acceptable audit trail, the IT auditor may decide to trace selected data or information through the entire...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

January 4, 2010  6:49 PM

IT Audit Verification Planning: Resolving Technique Selection – Part V



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CI, CIA, CICA, CISA, CITP, Compliance Testing, Configuration Item, Files, Information Asset, Information Technology, Infrastructure, IT, IT Audit, PM, Program, Project Management, Risk Management, Substantive Testing, Testing Techniques

Performance of audit procedures on individual programs and files, or the entire configuration as an integrated unit, is determined by the audit objectives and the audit trial. To...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 30, 2009  7:03 PM

IT Audit Verification Planning: Resolving Technique Selection – Part IV



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CI, CIA, CICA, CISA, CITP, Compliance Testing, Configuration Item, Files, Information Asset, Information Technology, Infrastructure, IT, IT Audit, PM, Program, Project Management, Risk Management, Substantive Testing, Testing Techniques

Auditing IT configurations involves performing compliance and substantive tests on a selected

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 28, 2009  9:08 PM

IT Audit Verification Planning: Resolving Technique Selection – Part III



Posted by: Robert Davis
AA, Applications, Audit Assurance, CI, CICA, CISA, CITP, Compliance Testing, Configuration Item, Files, Information Asset, Information Technology, Infrastructure, IT, IT Audit, PM, Program, Project Management, Risk Management, Substantive Testing, Testing Techniques

Auditing electronically encoded programs can also involve compliance and substantive testing. Compliance testing usually involves testing programs for controls. Techniques for auditing programs are primarily oriented toward...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 23, 2009  8:11 PM

IT Audit Verification Planning: Resolving Technique Selection – Part II



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CI, CICA, CISA, CITP, Compliance Testing, Configuration Item, Files, Information Asset, Information Technology, Infrastructure, IT, IT Audit, PM, Program, Project Management, Risk Management, Substantive Testing, Testing Techniques

Compliance testing is the primary method employed to verify stated controls are operating effectively, while substantive testing is the primary method utilized to increase audit assurance. For instance, an IT auditor may reperform compliance testing, documented by an entity’s

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 21, 2009  7:59 PM

IT Audit Verification Planning: Resolving Technique Selection – Part I



Posted by: Robert Davis
AA, Applications, Assurance Service, Audit Assurance, CI, Compliance Testing, Configuration Item, Files, Information Asset, Information Technology, Infrastructure, IT, IT Audit, PM, Program, Project Management, Risk Management, Substantive Testing, Testing Techniques

There are a variety of techniques available to the IT auditor for compliance and substantive testing when performing assurance engagements. ...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 3, 2009  9:07 PM

Safeguarding Assets is an IT Project Management Issue – Part IV



Posted by: Robert Davis
Applications, Asset, Implementation, Information Technology, Infrastructure, IT, Project Management, Risk Management, SDLC, System Development Life Cycle, Systems Analysis, Systems Design, Value Delivery

Systems and infrastructure design effects the controls relied on by an entity’s management, therefore, effecting control processes. Because systems and infrastructure are critical to an entity’s success, control processes should be designed...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

November 30, 2009  7:22 PM

Safeguarding Assets is an IT Project Management Issue – Part III



Posted by: Robert Davis
Applications, Asset, IDLC, Implementation, Information Technology, Infrastructure, Infrastructure Development Life Cycle, IT, Project Management, Risk Management, SDLC, System Development Life Cycle, Systems Analysis, Systems Design, Value Delivery

An adequate IT infrastructure permits the continuance and growth of technology-based systems. Considering the Control Objectives for Information and related Technology (

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

1234