Risk Management: Is it just another set of business buzzwords? – Part VI
Controlling and monitoring activities attempting to ensure acceptable risk responses include: Policies Directives Standards Procedures Rules Strategically; policies are definite courses or methods of...
View ArticleRisk Management: Is it just another set of business buzzwords? – Part VII
Management should establish standards as baselines for measuring quantity, weight, extent, value, or quality. Standards can be considered specific goals or objectives against which performance is...
View ArticleRisk Management: Is it just another set of business buzzwords? – Part VIII
IT policies, directives, standards, procedures, and rules should be deployed based on assessed effectiveness and efficiency in addressing managements risk appetite. Deployed controlling and monitoring...
View ArticleGovernment-Audit Convergence Part I
Generally, audit has a responsibility for ensuring that (1) independence and objectivity are maintained in all phases of assignments, (2) professional judgment is utilized in planning approaches,...
View ArticleGovernment-Audit Convergence Part II
Government sponsored laws and regulations can influence auditor conduct and impose IT audit practice requirements. Therefore, applying ISACA’s Professional Ethics and Standards, an IT auditor “should...
View ArticleGovernment-Audit Convergence Part III
Professional prudence dictates legal mandates impacting IT-IAP audit practice areas should be thoroughly understood by audit team members prior to proceeding with fieldwork. Specifically, IT auditors...
View ArticleGovernment-Audit Convergence Part IV
Regarding laws and regulations, when professional standards are applied to compliance engagements, an IT auditor has the right to believe that management has established appropriate controls to...
View ArticleGovernment-Audit Convergence Part V
Accountability is responsibility for performance against agreed-upon expectations either stated and/or implied. Professionally, an IT auditor should exercise due caution from disclosing information...
View ArticleGovernment-Audit Convergence Part VI
The most common audit practice laws and regulations influences are evidence collection and perseverance. Where legal compliance audits are decreed, if an illegal act is suspected, IT auditors must...
View ArticleGovernment-Audit Convergence Part VII
Technology deployment and associated management information systems can provide a competitive advantage as well as increased control requirements. Legal noncompliance risks are an irrefutable fact,...
View Article
More Pages to Explore .....