"IT Auditing: An Adaptive Process" is a 136 page workbook designed to be a self-contained tool for learning IT audit process flexibility, while performing effective IT audits, as well as a companion product for "IT Auditing: The Process".
“IT Auditing: An Adaptive Process” is a 136-page (8.5 wide by 11 length) workbook designed to be a self-contained tool for learning IT audit process flexibility, while performing effective IT audits, as well as a companion product for “IT Auditing: The Process.” Specifically, “IT Auditing: An Adaptive Process” is an enhanced and consolidated version of four IT audit monographs -- Information Systems Auditing: The IS Audit Planning Process (2nd Ed.), Information Systems Auditing: The IS Audit Study and Evaluation of Controls Process (2nd Ed.), Information Systems Auditing: The IS Audit Testing Process, and Information Systems Auditing: The IS Audit Reporting Process.
This workbook invites the reader to practice IT auditing based on generally accepted IT audit standards and guidelines through detailed examples. Furthermore, this workbook allows an IT auditor to understand various steps and processes required to adequately initiate, document, and compile IT audit phases.
Paperback Edition - LuLu.com
"An audit plan describes a predetermined audit objective and scope, with sufficient supporting detail, to guide development of an audit program. Audit plans reflect applicable auditing standards and practice statements issued by governing bodies of the audit profession. In particular, the International Federation of Accountants (IFAC) provides financial audit standards and IT guidelines. Whereas, the American Institute of Certified Public Accountant’s (AICPA’s) Statements of Auditing Standards (SAS) affect financial statements audit plan preparation. The Institute of Internal Auditors’ (IIA’s) International Standards for the Practice of Internal Auditing is the primary reference source when planning internal audits. Comparatively, ISACA’s IS Standards, Guidelines, and Procedures for Auditing and Control Professionals impact information systems audit plans. Jointly, ISACA’s documented audit methodologies, techniques, and tools provide standards and guidance for planning evaluation of deployed manual and automated processes. Auditors usually plan engagements based on audit objectives, business objectives, organizational practices, materiality, and control risk assessments. Beneficially, following audit plan procedures normally assures adequate coverage of audit ambit."
Information technology audits are an assurance service that may be applied to organizations or individuals. Specifically, the information protection and calculations utilized for generating spreadsheets should be examined to ensure confidentiality, integrity, and availability are sustained in both environments.