Scribd Logo
Upload

Welcome to Scribd!

  • 2 Planning Audit

    Uploaded by

    ozy.almondry2021
    9 views2 pages
    The document outlines the steps for IS audit planning according to ISACA. It involves understanding the business through activities like walkthroughs and interviews, determining changes, reviewing previous work, identifying policies and procedures, conducting risk analysis, setting the scope and objectives, developing a strategy, designating resources, and addressing logistics. It also lists the steps to determine regulatory compliance which are to identify external requirements, determine if internal functions address them, map requirements to functions, determine adherence, and report any gaps.

    Original Description:

    Original Title

    2_Planning_Audit

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document outlines the steps for IS audit planning according to ISACA. It involves understanding the business through activities like walkthroughs and interviews, determining changes, reviewing previous work, identifying policies and procedures, conducting risk analysis, setting the scope and objectives, developing a strategy, designating resources, and addressing logistics. It also lists the steps to determine regulatory compliance which are to identify external requirements, determine if internal functions address them, map requirements to functions, determine adherence, and report any gaps.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    9 views2 pages

    2 Planning Audit

    Uploaded by

    ozy.almondry2021
    The document outlines the steps for IS audit planning according to ISACA. It involves understanding the business through activities like walkthroughs and interviews, determining changes, reviewing previous work, identifying policies and procedures, conducting risk analysis, setting the scope and objectives, developing a strategy, designating resources, and addressing logistics. It also lists the steps to determine regulatory compliance which are to identify external requirements, determine if internal functions address them, map requirements to functions, determine adherence, and report any gaps.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    Risk level bassed approched:-

    - High, medium, or low

    -----------------------

    Things to consider when planning:-

    - Changes in controls

    - Changes to the risk environment

    - Changing technologies

    - Changing business processes

    ------------------------

    Planning Results:-

    Reviewed by senior auditor


    Approved by the board / committee
    Communicated to management

    --------------------------------
    ##ISACA - Steps to Perform IS Audit Planning

    1- Understand the business:-

    • Perform a walkthrough of the organization


    • Review long - term strategic plans
    • Interview key leadership and personnel
    • Review previous audit reports
    • Identify specific IT regulations
    • Identify outsourced activities ( Are there third - parties ? )

    2- Determine changes in the environment

    3- Review previous work

    4- Identify policies, standards, and procedures

    5- Conduct risk analysis

    6- Set scope and objectives

    7- Develop a strategy

    8- Designate resources

    9- Address engagement logistics

    ---------------------------------------

    ##Steps to Determine Regulatory Compliance


    - Identify and document external requirements

    - Determine if management's organizational and IT functions


    were designed to address the external requirements

    - Map external requirements to internal functions

    - Determine adherence

    - Report gaps

    You might also like