This presentation provides an overview of Statement on Auditing Standards aka SAS 70 auditing standard – what is SAS 70 report? what is the terminology used? how to perform a SAS 70 audit? what are the key considerations? how to use a SAS 70 report? how to evaluate a SAS 70 report?
Dive into this guide for a thorough understanding of auditing IT system configurations, focusing on standardized approaches, audit objectives, and test methodologies.
This presentation defines and clarifies the role, mission and charter of the internal audit function then describes its reporting structure and relationships with key stakeholders. It discusses best practices for executive reporting, risk assessment, life cycle and methodology and how to perform risk based and computer assisted audits.
Gain insights into the convergence of IT security and compliance, understanding the role of governance and technology trends in shaping modern IT strategies.
Explore this guide for in-depth strategies on IS audit planning and execution, focusing on compliance, operational efficiency, and strategic business alignment.
This presentation discusses change management – definition, significance, types – change management controls, the impact of weak change management controls and best practices in change management along the software development life cycle (SDLC).
This presentation discusses concepts, best practices, business case, and implementation guidelines for continuous auditing. It presents a case study to depict the practical application of these concepts.
This paper provides an overview of computer audit – what are the main activities in conducting a computer audit and what is the role of the computer auditor?
This presentation provides a primer on virtualization, discusses things to know about virtualization from an IT audit perspective – "What IS virtualization? What are the issues? What is a reasonable, “AUDIT-READY” secure Reference Architecture?"
This excellent presentation provides an overview of information technology audit – for the non-auditor. It starts with the basics – what is an IT audit? – then goes on to establish a baseline of key terms and concepts, automated controls, difference between financial and IT controls, dispels common myths, and, how to test common IT controls.
