Information Technology Control and Audit, Fifth Edition
eBook - ePub

Information Technology Control and Audit, Fifth Edition

Angel R. Otero

Share book
  1. 484 pages
  2. English
  3. ePUB (mobile friendly)
  4. Available on iOS & Android
eBook - ePub

Information Technology Control and Audit, Fifth Edition

Angel R. Otero

Book details
Book preview
Table of contents
Citations

About This Book

The new fifth edition of Information Technology Control and Audit has been significantly revised to include a comprehensive overview of the IT environment, including revolutionizing technologies, legislation, audit process, governance, strategy, and outsourcing, among others. This new edition also outlines common IT audit risks, procedures, and involvement associated with major IT audit areas. It further provides cases featuring practical IT audit scenarios, as well as sample documentation to design and perform actual IT audit work. Filled with up-to-date audit concepts, tools, techniques, and references for further reading, this revised edition promotes the mastery of concepts, as well as the effective implementation and assessment of IT controls by organizations and auditors.

For instructors and lecturers there are an instructor's manual, sample syllabi and course schedules, PowerPoint lecture slides, and test questions. For students there are flashcards to test their knowledge of key terms and recommended further readings. Go to http://routledgetextbooks.com/textbooks/9781498752282/ for more information.

Frequently asked questions

How do I cancel my subscription?
Simply head over to the account section in settings and click on ā€œCancel Subscriptionā€ - itā€™s as simple as that. After you cancel, your membership will stay active for the remainder of the time youā€™ve paid for. Learn more here.
Can/how do I download books?
At the moment all of our mobile-responsive ePub books are available to download via the app. Most of our PDFs are also available to download and we're working on making the final remaining ones downloadable now. Learn more here.
What is the difference between the pricing plans?
Both plans give you full access to the library and all of Perlegoā€™s features. The only differences are the price and subscription period: With the annual plan youā€™ll save around 30% compared to 12 months on the monthly plan.
What is Perlego?
We are an online textbook subscription service, where you can get access to an entire online library for less than the price of a single book per month. With over 1 million books across 1000+ topics, weā€™ve got you covered! Learn more here.
Do you support text-to-speech?
Look out for the read-aloud symbol on your next book to see if you can listen to it. The read-aloud tool reads text aloud for you, highlighting the text as it is being read. You can pause it, speed it up and slow it down. Learn more here.
Is Information Technology Control and Audit, Fifth Edition an online PDF/ePUB?
Yes, you can access Information Technology Control and Audit, Fifth Edition by Angel R. Otero in PDF and/or ePUB format, as well as other popular books in Informatica & Sicurezza informatica. We have over one million books available in our catalogue for you to explore.

Information

Publisher
Auerbach Publications
Year
2018
ISBN
9780429877322
Edition
5
Topic
Informatica
Subtopic
Sicurezza informatica

Appendix 1: IT Planning Memo

Memo

Date:
[Date]
To:
The Financial Statement Audit File
From:
[IT Auditor Representative], [Office Location]
Subject:
IT Audit Planning

Purpose

The purpose of this memo is to outline the procedures associated with the involvement of the Information Technology Auditors (ā€œIT Auditorsā€) in connection with the financial statement audit (ā€œfinancial auditā€) of [company name] ([ā€œcompany abbreviated nameā€ or ā€œthe Companyā€]) for the year [ending or ended] [Month XX, 20XX]. The approach for the IT audit outlined herein serves as a supplement to the financial audit planning memorandum and should be reviewed in conjunction with such working paper.

Planning Discussions

(The planning meeting between the financial audit team and the IT audit team should be documented in this planning memo. Modify the sections below as applicable.)
As detailed in the working paper [working paper reference number], a discussion with the financial audit Partner, Principal, or Director was held to determine the level of IT audit involvement. (If an IT auditor has already been involved in the audit, describe previous involvement and/or any relevant planning discussions herein.) During this planning meeting, risk assessments of areas to be addressed were also discussed along with the nature, extent, and timing of planned tests of controls described further in this planning memo.

IT Audit Team

The IT audit team will consist of the following:
Role
Name
Partner, Principal, or Director
Manager or Senior Manager
Senior
Staff

Timing

Timing of the IT audit work is scheduled as follows:
  1. Planning (starting [MM/DD/YY], ending [MM/DD/YY])
  2. Interim (starting [MM/DD/YY], ending [MM/DD/YY])
  3. Year end (starting [MM/DD/YY], ending [MM/DD/YY])
  4. Sign-off date ([MM/DD/YY])

Hours

Hours and costs are based on the estimated time required to complete the IT audit procedures and the level of experience required. Detailed IT audit procedures have been planned with the financial audit team, including discussions regarding the necessary documentation and assistance to be provided by the Company to facilitate the effective and efficient performance of the procedures.
It is estimated that the IT audit procedures will take [##] hours to complete.
The hours incurred are to be charged to: [Company charge code/number].
During the course of the IT audit, circumstances encountered that could significantly affect the performance of such audit procedures will be promptly notified to the financial audit team and Company personnel, as appropriate, including any additional hours resulting from such circumstances.

Understand the IT Environment

Meetings with Company personnel will take place in order to gather or update the existing understanding of the IT environment, including significant changes from the prior year. This understanding will be considered as part of the planning process and documented in working paper [working paper reference number].

Relevant Applications and Technology Elements

As agreed with the financial audit team, applications are classified as relevant to the audit when they:
  • are used to support a critical business process (e.g., revenues, expenditures, payroll, etc.)
  • have information generated by the organization (IGO) that is significant for a financial audit test procedure or in the context of any internal controls, such as information used to test a relevant control activity or information used by the Company to perform the control activity
  • include application or automated control activities that have been identifying as addressing significant financial audit risks
Relevant applications and their related technology elements have been identified on the following table or documented at [working paper r...

Table of contents