Audit and Assurance

This is a forum to collaborate on all topics related to IT audit and assurance.  Examples includes discussions on audit programs, sources of assurance, audit best practice, audit methodologies, audit charters, audit standards, the IT Assurance Framework (ITAF), audit news etc.

Topic Leaders

Senior Auditor
Ultimate Consulting, Inc
Continuity NZ, Ltd
Director/Principal Consultant

List of Discussions

  • Dear  Folks, Please help, a small organization (bank): The database administrator is the same as system administrator. Is it a major risk ? what can go wrong? and what is the main risk if there is no segregation of duties between these two roles. Please ...

  • Thanks Yusu; this has been helpful ------------------------------ Rita Kobusinge MANAGER SYSTEMS AUDIT ------------------------------

  • Good day I am new to auditing NetSuite which is an Oracle based system. Can anyone give any guidance on the system generated reports I can request to facilitate an Identity and Access Management audit? Allison ------------------------------ Allison ...

  • @Marat Kaisseov , There is a section entitled Job Scheduling & Process Automation in the CISA Review Manual if you can access a copy. Best Regards, Ian​ ------------------------------ Ian Cooke Audit & Assurance Topic Leader ISACA Journal Columnist ...

  • @Tiffani Fox , I'm afraid I am not in Life Sciences, however, ISACA has a Change Management ​audit program that may be of help to you   Can I suggest that you review it ...

  • Hi Sal, many thanks for your reply It's an IT audit so ISACA standards should be the right reference But ITAF does not mention "except for the following" Anyway, it's clear for me now thanks ------------------------------ Ahmad Aminy ----------- ...

  • Thanks  Yusuf for your suggestion. Some ideas for me to ponder and assess. ------------------------------ Albert Tan IT and Operational Auditor ------------------------------

Latest Shared Files