The IT audit is an integral component of a discerning business’s pursuit of robust IT security and actionable oversight. Solid corporate governance requires that companies regularly undergo these audits (i.e.,”health checks”) of their IT security and infrastructure.
Systems And Applications
An audit to verify that systems and applications are appropriate to the entity’s needs, are efficient, and are adequately controlled to ensure valid, reliable, timely, and secure input, processing, and output at all levels of a system’s activity.
Information Processing Facilities
An audit to verify that the processing facility is controlled to ensure timely, accurate, and efficient processing of applications under normal and potentially disruptive conditions.
An audit to verify that the systems under development meet the objectives of the organization, and to ensure that the systems are developed in accordance with generally accepted standards for systems development.
Management Of IT And Enterprise Architecture
An audit to verify that IT management has developed an organizational structure and procedures to ensure a controlled and efficient environment for information processing.
Client/Server, Telecommunications, Intranets, And Extranets
An audit to verify that controls are in place on the client (computer receiving services), server, and on the network connecting the clients and servers.