LIST OF PRACTICE GUIDES - GTAG

as per 05.09.2018

No Title Date​ Month Year

1 Auditing Application Controls (Previously GTAG 8) January 2009 1 2009
2 ​Business Continuity Management (Previously GTAG 10) ​January 2009 1 2009
3 Developing the IT Audit Plan (Previously GTAG 11) January 2009 1 2009
4 Identity and Access Management (Previously GTAG 9) January 2009 1 2009
5 ​Auditing IT Projects (Previously GTAG 12) March 2009​ 3 2009
6 Fraud Prevention and Detection in an Automated World (Previously
December GTAG
200913) 12 2009

7 Auditing User-developed Applications (Previously GTAG 14) June 2010 6 2010

8 Information Security Governance (Previously GTAG 15) June 2010 6 2010

9 Data Analysis Technologies (Previously GTAG 16)​ ​August 2011 8 2011

10 Change and Patch Management Controls: Critical for Organizational

MarchSuccess,
2012 2nd3Edition (Previously
2012 GTAG 2)

11 Information Technology Risk and Controls, 2nd Edition (Previously

March
GTAG
2012
1) 3 2012

12 Information Technology Outsourcing, 2nd Edition (Previously GTAG

June
7) 2012 6 2012

13 Management of IT Auditing, 2nd Edition (Previously GTAG 4) January 2013 1 2013

14 Continuous Auditing: Coordinating Continuous Auditing and Monitoring

March 2015
to Provide
3 Continuous
2015 Assurance, 2n

15 Auditing Smart Devices: An Internal Auditor's Guide to Understanding

August and
2016Auditing
8 Smart2016
Devices

16 Assessing Cybersecurity Risk: Roles of the Three Lines of Defense Sep-16 9 2016
17 ​Understanding and Auditing Big Data May 2017 5 2017
18 UPDATED! ​Auditing IT Governance (Previously GTAG 17) January 2018 1 2018
19 ​NEW! Auditing Insider Threat Programs August 2018​ 8 2018