IT Governance, Risk, and Compliance

Apr 5 2010   5:57PM GMT

IT Audit Follow-up: Assessing Recommendation Resolution – Part VIII

Robert Davis Robert Davis Profile: Robert Davis

Follow-up activities are essential to enabling continuous improvement in IT governance. IT audit must ensure follow-up activities are completed in a timely manner to reduce the cited risks to the entity’s operations. Nevertheless, management must take full responsibility for ensuring entity personnel pursue commitments to perform agreed corrective actions for gaps and/or weaknesses in the control system. Where corrective actions are not undertaken or completed within the expected timeframe, management should document the reason(s) for rescinding the obligation or why there was a delay in deployment.

View Part I of the IT Audit Follow-up: Assessing Recommendation Resolution series here

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: