Information for the audit program was also obtained as necessary from the Institute of Internal Auditor’s GTAG (Global Technology Audit Guide) #12 ( Auditing IT. (From IIA Global Technology Audit Guide Auditing IT Projects). GTAG 28, 2, Project Plan and Approach, , Objective and scope, The scope of the project. Start studying GTAG Auditing IT Projects: Appendix A – Project Management. Learn vocabulary, terms, and more with flashcards, games, and other study.

Author: Zolorn Sagrel
Country: Spain
Language: English (Spanish)
Genre: Art
Published (Last): 26 May 2017
Pages: 216
PDF File Size: 20.74 Mb
ePub File Size: 19.88 Mb
ISBN: 135-6-13663-266-9
Downloads: 93750
Price: Free* [*Free Regsitration Required]
Uploader: Faukus

A suggested list of questions for use in the IT project assessment.

They can serve as a bridge between individual business units and the IT function, point out previously unidentified risks, and recommend controls for enhancing outcomes. Types of project audits. By using this site, you agree to the Terms of Use and Privacy Policy. This guide provides assistance to chief audit executives in the development of a risk-based IT audit plan. This guide is designed for chief audit executives CAEs and internal audit management personnel who are responsible for overseeing IT audits.

This article is about IT general controls. Committee Members and Chapter Leaders. GTAGs are written in straightforward business language to address a timely issue related to information technology IT management, control, and security. There should be a specific schedule to assess and mitigate mission risks, but it should be flexible enough to be changed when necessary.

  DM246 87 PDF

Search | Resources | IIA

The objectives of general controls are to ensure the proper development and implementation of applications, the integrity of program and data files and of computer operations. Retrieved from ” https: This page was last edited on 19 Decemberat Auditong the IIA Bookstore for more information. Become a Global Guidance Contributor.

App A Objective 3: Insufficient attention to these challenges can result in wasted money and resources, loss of trust, and reputation damage. Mission of Internal Audit. This guide provides information on the types of IT outsourcing, the life cycle of IT outsourcing, and how internal auditors can approach risk in connection with this.

Turn on more accessible mode. The organization shall manage the system development process by establishing efficient development methods, designating personnel to be responsible for the project, and implementing project management.

Establish and maintain project management standards. | Control Result | Unified Compliance

The organization shall determine the required verification, validation, inspection, monitoring, and test activities for the product and the product acceptance criteria during the product realization planning. Key project management risks. GTAG 13 Fraud Prevention and Detection in an Automated World This guide is to inform and provide guidance to chief audit executives CAEs and internal auditors auditinv how to use technology to help prevent, detect, and respond to fraud. The purpose of this guide is to outline a framework for assessing project-related risks.

Global Public Sector Insights. Controls, other than application controls, which relate to the environment within which computer-based application systems are developed, maintained and operated, and which are therefore applicable to all applications. This guide provides insight into identity and access management and what this means to an organisation.


Establish and maintain a system design project management framework.

Global Technology Audit Guide (GTAG) 12: Auditing IT Projects

It also suggests internal audit areas for investigation. AIs should establish a general framework for management of major technology-related projects.

This guide is to inform and provide ggtag to chief audit executives CAEs and internal auditors on how to use technology to help prevent, detect, and respond to fraud. Global Perspectives and Insights. App A Objective The framework and supporting method should be integrated with the programme management processes.

Views Read Edit View history. What is internal audit? Co-ordinate the activities and … PO Management of security risk in information and information technology Establish and maintain a project management framework that defines the scope and boundaries of managing projects, as well as the method to be adopted and applied to each project undertaken.

This guide describes the knowledge needed by organisations and internal auditors to address the effectiveness and impact of business recovery capabilities.

Author: admin