Understanding the Work of the IT Auditor

Kamper Sahin

2 min read
Understanding the Work of the IT Auditor

In buy to understand fully the particular nature of a good IT auditor? s i9000 work, it will be best that a person find out fundamental of IT auditing i actually. e.: -

Precisely what is IT Taxation?
What is the scope of an IT Examine?
Why perform THAT audit?
IT Dangers

What is THIS Audit?

IT = Technology (system/process/method) in order to produce the information essential by the users.

Information = Info that has recently been processed to fit typically the user requirements

Audit = assurance in addition to consulting activities

THIS Audit is merely another branch involving audit. It is essentially an assurance plus consulting activities designed to add value and improve the THAT operations.

Interesting sites on IT Audit of which you can label: -

[http://www.theiia.org/itaudit/]

http://www.isaca.org/

What is the scope of the THAT Audit?

Based on FFIEC Information TechnologyExamination Guide, the typical range of an THAT audit: -

Management
Procedures
Development & Obtain
Information Safety
Business Continuity Setting up

Depending on COBIT, typically the scope of a good IT audit covers the followings: -

Plan & Organise (PO)
Acquire & Implement (AI)
Deliver & Support (DS)
Monitor & Assess (ME)

Whether using FFIEC, COBIT or any other methodology, the most essential thing is to understand your THAT environment and just how it is support the business business.

Why carry out IT audit?

https://haastrup-dinesen.thoughtlanes.net/is-your-web-host-your-current-friend-8-techniques-to-find-out  of the IT audit is usually to measure the adequacy of the settings in place in order to safeguard the educational assets.

Basically, in  Homepage  to review the level of IT dangers, controls and exposure. My simple equation is: --

IT Risk? IT Manage = IT Direct exposure

Therefore, an THIS auditor should evaluate the level involving IT risks and even controls that exist in order in order to evaluate if there will be any exposure inside of the organisation.

IT Risks

There are usually many approaches to categorize the IT hazards.

One of the particular methods is: :

Infrastructure Risk
Availability Threat
Integrity Risk
Access Risk
Meaning Risk

Sign up for more like this.

Enter your email
Subscribe