IT Risk Assessment: Effective Identification and Selection of IT Audit Projects
Over the past few months I’ve had several leaders of Internal Audit departments ask: “How can we build cyber-security into our annual audit plan?”
After a few conversations I decided to put together a whitepaper to help the less-than-technical Chief Audit Executive (CAE) put together a well thought out IT Risk Assessment that helps identify and prioritize potential audit projects that tackle the subject of IT risk.
You can check out more of our whitepapers on our resources page. If you are looking for tips on effective IT Audit don’t forget to check out our Guide to IT Auditing.
Related Posts
How to Improve the Broken Risk Assessment Process
How a Better IT Risk Assessment May Change Your Thoughts on the Traditional Gap Analysis
Top 10 IT Risk Frameworks and Resources
Application Risk Management
Key Questions to Consider when reviewing a SOC Report
I Hate My Auditor: Building Better Client Relationships
Simplify Compliance by Creating One Set of Controls to Manage Risk (Unified Control Framework)