IT Governance, Risk, and Compliance

Apr 1 2010   6:56PM GMT

IT Audit Follow-up: Assessing Recommendation Resolution – Part VII

Robert Davis Robert Davis Profile: Robert Davis

A report on the status of follow-up activities, including agreed-upon recommendations not implemented, should be presented to the audit committee, if one has been established, or alternatively to the most appropriate management level of the entity. Preceding IT audit follow-up report preparation, where management provides information on actions taken to implement recommendations, and the IT auditor has doubts about the information provided, appropriate testing or other procedures should be undertaken to ascertain the true position or status — prior to concluding follow-up activities.

View Part I of the IT Audit Follow-up: Assessing Recommendation Resolution series here

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: