Audit and Assurance

Structure of an IS Audit Report

  • 1.  Structure of an IS Audit Report

    Posted 09 Mar, 2020 03:41
    Hi all,

    I believe we all have standard formats on how our reports are. Can we share the formats and a little explanation on why you include certain sections and why others are not considered?

    For example, some consider the following sections:
    1. Introduction (including a statement of audit objectives, limitations to the audit and scope, the period of audit coverage and a general statement on the nature and extent of audit procedures conducted and processes examined during the audit, followed by a statement on the IS audit methodology and guidelines.)
    2. Summary of Audit Findings
    3. Detailed audit findings
    4. Appendices (Report rating etc.)

    Thank you in advance.

    Veronica Rose, CISA
    Information Systems Auditor