- 484 pages
- English
- ePUB (mobile friendly)
- Available on iOS & Android
eBook - ePub
Information Technology Control and Audit, Fifth Edition
About this book
The new fifth edition of Information Technology Control and Audit has been significantly revised to include a comprehensive overview of the IT environment, including revolutionizing technologies, legislation, audit process, governance, strategy, and outsourcing, among others. This new edition also outlines common IT audit risks, procedures, and involvement associated with major IT audit areas. It further provides cases featuring practical IT audit scenarios, as well as sample documentation to design and perform actual IT audit work. Filled with up-to-date audit concepts, tools, techniques, and references for further reading, this revised edition promotes the mastery of concepts, as well as the effective implementation and assessment of IT controls by organizations and auditors.
For instructors and lecturers there are an instructor's manual, sample syllabi and course schedules, PowerPoint lecture slides, and test questions. For students there are flashcards to test their knowledge of key terms and recommended further readings. Go to http://routledgetextbooks.com/textbooks/9781498752282/ for more information.
Frequently asked questions
Yes, you can cancel anytime from the Subscription tab in your account settings on the Perlego website. Your subscription will stay active until the end of your current billing period. Learn how to cancel your subscription.
At the moment all of our mobile-responsive ePub books are available to download via the app. Most of our PDFs are also available to download and we're working on making the final remaining ones downloadable now. Learn more here.
Perlego offers two plans: Essential and Complete
- Essential is ideal for learners and professionals who enjoy exploring a wide range of subjects. Access the Essential Library with 800,000+ trusted titles and best-sellers across business, personal growth, and the humanities. Includes unlimited reading time and Standard Read Aloud voice.
- Complete: Perfect for advanced learners and researchers needing full, unrestricted access. Unlock 1.4M+ books across hundreds of subjects, including academic and specialized titles. The Complete Plan also includes advanced features like Premium Read Aloud and Research Assistant.
We are an online textbook subscription service, where you can get access to an entire online library for less than the price of a single book per month. With over 1 million books across 1000+ topics, we’ve got you covered! Learn more here.
Look out for the read-aloud symbol on your next book to see if you can listen to it. The read-aloud tool reads text aloud for you, highlighting the text as it is being read. You can pause it, speed it up and slow it down. Learn more here.
Yes! You can use the Perlego app on both iOS or Android devices to read anytime, anywhere — even offline. Perfect for commutes or when you’re on the go.
Please note we cannot support devices running on iOS 13 and Android 7 or earlier. Learn more about using the app.
Please note we cannot support devices running on iOS 13 and Android 7 or earlier. Learn more about using the app.
Yes, you can access Information Technology Control and Audit, Fifth Edition by Angel R. Otero in PDF and/or ePUB format, as well as other popular books in Business & Information Management. We have over one million books available in our catalogue for you to explore.
Information
Appendix 1: IT Planning Memo
Memo
Date: | [Date] |
To: | The Financial Statement Audit File |
From: | [IT Auditor Representative], [Office Location] |
Subject: | IT Audit Planning |
Purpose
The purpose of this memo is to outline the procedures associated with the involvement of the Information Technology Auditors (“IT Auditors”) in connection with the financial statement audit (“financial audit”) of [company name] ([“company abbreviated name” or “the Company”]) for the year [ending or ended] [Month XX, 20XX]. The approach for the IT audit outlined herein serves as a supplement to the financial audit planning memorandum and should be reviewed in conjunction with such working paper.
Planning Discussions
(The planning meeting between the financial audit team and the IT audit team should be documented in this planning memo. Modify the sections below as applicable.)
As detailed in the working paper [working paper reference number], a discussion with the financial audit Partner, Principal, or Director was held to determine the level of IT audit involvement. (If an IT auditor has already been involved in the audit, describe previous involvement and/or any relevant planning discussions herein.) During this planning meeting, risk assessments of areas to be addressed were also discussed along with the nature, extent, and timing of planned tests of controls described further in this planning memo.
IT Audit Team
The IT audit team will consist of the following:
Role | Name |
Partner, Principal, or Director | |
Manager or Senior Manager | |
Senior | |
Staff |
Timing
Timing of the IT audit work is scheduled as follows:
- Planning (starting [MM/DD/YY], ending [MM/DD/YY])
- Interim (starting [MM/DD/YY], ending [MM/DD/YY])
- Year end (starting [MM/DD/YY], ending [MM/DD/YY])
- Sign-off date ([MM/DD/YY])
Hours
Hours and costs are based on the estimated time required to complete the IT audit procedures and the level of experience required. Detailed IT audit procedures have been planned with the financial audit team, including discussions regarding the necessary documentation and assistance to be provided by the Company to facilitate the effective and efficient performance of the procedures.
It is estimated that the IT audit procedures will take [##] hours to complete.
The hours incurred are to be charged to: [Company charge code/number].
During the course of the IT audit, circumstances encountered that could significantly affect the performance of such audit procedures will be promptly notified to the financial audit team and Company personnel, as appropriate, including any additional hours resulting from such circumstances.
Understand the IT Environment
Meetings with Company personnel will take place in order to gather or update the existing understanding of the IT environment, including significant changes from the prior year. This understanding will be considered as part of the planning process and documented in working paper [working paper reference number].
Relevant Applications and Technology Elements
As agreed with the financial audit team, applications are classified as relevant to the audit when they:
- are used to support a critical business process (e.g., revenues, expenditures, payroll, etc.)
- have information generated by the organization (IGO) that is significant for a financial audit test procedure or in the context of any internal controls, such as information used to test a relevant control activity or information used by the Company to perform the control activity
- include application or automated control activities that have been identifying as addressing significant financial audit risks
Relevant applications and their related technology elements have been identified on the following table or documented at [working paper r...
Table of contents
- Cover
- Title Page
- Copyright Page
- Dedication
- Contents
- Preface
- Acknowledgments
- Author
- Section I Foundation for It Audit
- Section II Planning and Organization
- Section III Auditing It Environment
- Appendix 1: IT Planning Memo
- Appendix 2: Understanding the IT Environment
- Appendix 3: Sample IT Audit Programs for General Control IT Areas
- Appendix 4: ACL Best Practice Procedures for Testing Accounting Journal Entries
- Appendix 5: IT Risk Assessment Example Using NIST SP 800-30
- Appendix 6: Sample Change Control Management Policy
- Appendix 7: Sample Information Systems Operations Policy
- Appendix 8: Auditing End-User Computing Groups
- Appendix 9: Recommended Control Areas for Auditing Software Acquisitions
- Appendix 10: Glossary
- Index