Over the past few months I’ve had several leaders of Internal Audit departments ask: “How can we build cyber-security into our annual audit plan?”
After a few conversations I decided to put together a whitepaper to help the less-than-technical Chief Audit Executive (CAE) put together a well thought out IT Risk Assessment that helps identify and prioritize potential audit projects that tackle the subject of IT risk.
Related Posts
How to Improve the Broken Risk Assessment Process
How a Better IT Risk Assessment May Change Your Thoughts on the Traditional Gap Analysis
Top 10 IT Risk Frameworks and Resources
What SOC 2 Updates to COSO 2013 Mean for You (Whitepaper)
I Hate My Auditor: Building Better Client Relationships
Lessons Learned from a Cybersecurity Review
Application Risk Management