IT Governance, Risk, and Compliance

Dec 23 2009   8:11PM GMT

IT Audit Verification Planning: Resolving Technique Selection – Part II

Robert Davis Robert Davis Profile: Robert Davis

Compliance testing is the primary method employed to verify stated controls are operating effectively, while substantive testing is the primary method utilized to increase audit assurance. For instance, an IT auditor may reperform compliance testing, documented by an entity’s software quality assurance department, to verify controls are operating effectively. Whereas, an IT auditor may apply substantive testing procedures for recalculating cost allocations to assess if a discovered deficiency is material.

Auditing electronically encoded files can involve compliance testing and substantive testing. Specifically, files can be tested for evidence of compliance with designed controls or the integrity of the data contained therein. Techniques for auditing files are primarily oriented toward substantive testing of details in the selected repositories.

View Part I of the IT Audit Verification Planning: Resolving Technique Selection series here

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: