- Functions/Areas under purview for IT Audit
- Application Software Development (Development methodologies, Change control procedures,
- Service Continuity
- Problems/Incidents reporting
- Access to Computer resources
- Logical Access (written policies & Procedures, resignations, New User requests, password storage)
- Physical Access (Access to computer systems, Document with password storage areas)
- Manage Software & Hardware (Inventory , policy for installation etc)
- Logical Access (written policies & Procedures, resignations, New User requests, password storage)
- System software controls (Forced Password change controls, block bad internet access, dial-in access control)
- Operating System installation procedures
- Software licences
- Operational procedures
Steps in performing IT Audit (Information Technology Audit Process)
- Planning
- Studying and Evaluating Controls
- Testing and Evaluating Controls
- Reporting
- Follow-up
- Preliminary Review
- Establish Materiality and Assess Risk
- Plan Audit Perform Audit Procedure
