TECHNOLOGY MANAGEMENT

TECHNOLOGY
AUDIT
Submitted To :- Prof. Arun Kumar
Submitted By :- Harleen Kaur
Roll No :- 6935
CONTENT
Technology Audit 1
Types of IT Audit 2
Objectives of IT Audit 3
IT Audit Process 4
Conclusion 5
 1 TECHNOLOGY AUDIT
An Information Technology audit is the examination and
evaluation of an organization's information
technology infrastructure, applications, data use and
management, policies, procedures and operational
processes against recognized standards or established
policies. Audits evaluate if the controls to protect
information technology assets ensure integrity and are
aligned with organizational goals and objectives.
 2 TYPES OF IT AUDIT
1. TECHNOLOGICAL INNOVATION PROCESS AUDIT:- This audit constructs a risk
profile for existing and new projects. The audit will assess the length and depth of the
company's experience in its chosen technologies, as well as its presence in relevant markets,
the organization of each project, and industry structure.
2. INNOVATIVE COMPARISON AUDIT:- This audit is an analysis of the innovative
abilities of the company being audited, in comparison to its competitors. This requires
examination of company's research and development facilities, as well as its track record in
actually producing new products.
3. TECHNOLOGICAL POSITION AUDIT:- This audit reviews the technologies that the
business currently has and that it needs to add. Technologies are characterized as being either
"base", "key", "pacing" or "emerging".
 2(i) TYPES OF IT AUDIT
 SYSTEMS AND APPLICATIONS: An audit to verify that
systems and applications are appropriate, are efficient. System
and process assurance audits form a subtype, focusing on
business process - centric business IT systems. Such audits
have the objective to assist financial auditors.
 INFORMATION PROCESSING FACILITIES: An audit to
verify that the processing facility is controlled to ensure timely,
accurate, and efficient processing of applications under normal
and potentially disruptive conditions.
 2(ii) TYPES OF IT AUDIT
 SYSTEMS DEVELOPMENT: An audit to verify that the systems under development meet
the objectives of the organization, and to ensure that the systems are developed in
accordance with generally accepted standards for systems development.
 MANAGEMENT OF IT AND ENTERPRISE ARCHITECTURE: An audit to verify that
IT management has developed an organizational structure and procedures to ensure a
controlled and efficient environment for information processing.
 CLIENT/SERVER, TELECOMMUNICATIONS, INTRANETS, AND EXTRANETS: An audit
to verify that telecommunications controls are in place on the client (computer receiving
services), server, and on the network connecting the clients and servers.
 3 OBJECTIVES OF IT AUDIT

1 2 3 4 5

Evaluation Determining Verifying Checking Establishing

of system potential reliability compliance ineffective-
and risks and ness
process integrity
 4 IT AUDIT PROCESS
1. PLANNING :- Planning the audit ahead of time
prevents unnecessary costs and allows auditors to use
their resources more effectively.

2. FIELDWORK :- After observing an audited

process or system on-site and testing the controls, the
audit team identifies and analyzes key risks.

3. REPORTING :- During and after conducting an IT

audit, the auditor creates a report that explains how well
the company's controls are performing.

4. FOLLOW - UP :- If stated so in the contract,

auditors may follow up to make sure that the
recommendations are followed and whether the
improvements are working adequately
 5 CONCLUSION
Information technology auditing is an exciting field that is
becoming more and more in demand as the technology
we utilize in our day-to-day lives increases. In an era of
hackings and cyber-crime, there are numerous job
opportunities with high salaries in this field. If you’re
looking to make a change in your career path, consider
pursuing auditing by learning the basic education and
skills needed for this lucrative field.
THANK
YOU