Information Systems Auditing: The IS Audit Follow-up Process

Information Systems Auditing

The IS Audit Follow-up Process

Robert E. Davis, MBA, CISA, CICA

Published by Robert E. Davis at Smashwords

Copyright 2010 Robert E. Davis, MBA, CISA, CICA. All rights reserved.

Smashwords Edition, License Notes

This ebook is licensed for your personal enjoyment only. This ebook may not be re-sold or given away to other people. If you would like to share this book with another person, please purchase an additional copy for each recipient. If you’re reading this book and did not purchase it, or it was not purchased for your use only, then please return to Smashwords.com and purchase your own copy. Thank you for respecting the hard work of this author.

Preface

As computing power has advanced, organizations have become increasingly dependent on technology to carry out their operational requirements and to collect, process, maintain, and report essential data. This reliance on electronically encoded data and on the systems that affect managerial decisions are a major concern of audit professionals. Consequently, Information Technology (IT) auditors examine the adequacy of controls in information systems and related operations to assure effectiveness and efficiency in business processes. In addition, among other assurance services, IT auditors evaluate the reliability of computer generated data supporting financial statements and analyze specific programs and their processing results. To ensure maximum value delivery from audit area assessments, IT auditors need a practice methodology that enables confidence in the work performed.

Objectives

This first edition of Information Systems Auditing: The IS Audit Follow-up Process is part of an electronic booklets series providing comprehensive IS audit planning, study, evaluation, testing, and reporting methods. In terms of content, these monographs convert selected audit standards into practical applications using detailed examples. These monographs also allow auditors to understand various steps and processes required to adequately initiate, document, and compile IT audit phases. Moreover, the reader will acquire an appreciation for IT financial statement, government, and external auditing. Collectively, these monographs function as study guides for CISA examination preparation as well as audit reference manuals.

IT audit area follow-up mastery reflects professional experience and training. Regarding subject mastery, this booklet presents finding form analysis, draft report writing and presentation; which can be translated, if practiced, into professional experience. Chronologically, this monograph presents managerial corrective action considerations and describes required audit follow-up steps performed during an audit area engagement extension, separate engagement, or agreed-upon procedures assignment. Specifically, assessing audit responses and general follow-up activities are discussed from an information systems audit perspective, while simultaneously presenting other equivalent audit standards and guidelines.

Related Material

As a training companion, Pleier