IT Audits

$US 1.00
This template provides a basis for analyzing the effectiveness of your business processes and systems. ERP and other computer systems, processes and procedures are there to provide measurable business benefits. The effectiveness or otherwise of systems should be measured ..
$US 1.00
A comprehensive IT Health Check document for a small to medium sized business with an in-house IT function. The report is targetted a senior management and covers most aspects of the ICT operation within the company. Management summary is in traffic light format. "The..
$US 1.00
This document analyses the current operations of a Shared Services enity to estimate what the costs to outsource the operation would be. It contains lots of good information about what elements should be analysed when conducting a pricing or costing review on an existing ..

What is an Information Technology Audit (IT Audit)? Read More....

An IT audit collects and evaluates "evidence" of an organization's information systems, practices, and operations. The evaluation of this evidence determines if the information systems are safeguarding the infomation assets, maintaining data integrity, and operating effectively and efficiently to achieve the organization's business goals or objectives.

The primary functions of an IT audit are to evaluate the systems that are in place to guard an organization's information. Specifically, information technology audits are used to evaluate the organization's ability to protect its information assets and to properly dispense information to authorized parties. The IT audit aims to evaluate the following:

  • Will the organization's computer systems be available for the business at all times when required? (known as availability)

  • Will the information in the systems be disclosed only to authorized users? (known as security and confidentiality)

  • Will the information provided by the system always be accurate, reliable, and timely? (measures the integrity)

In this way, the audit hopes to assess the risk to the company's valuable asset (its information) and establish methods of minimizing those risks.

Also Known As: Information Systems Audit, ADP audits, EDP audits, computer audits