Information System Audit
The importance of information System security is to ensure data confidentiality, integrity and availability. Many organizations, no matter their size or scope of operation, have come to realize the importance of using information technology to stay ahead in the current global scenario.
The objectives of this audit include finding out if there are any excesses, inefficiency and wastage in the use and management of IT systems. This audit is carried out to assure the stakeholders that the IT system in place is value for the money invested in it.
- The basic areas of an IT audit scope can be summarized as:
- The organization policy and standards,
- The organization and management of computer facilities,
- The physical environment in which computers operate, contingency planning etc.
- The operation of system software,
- The applications system development process, review of user applications and end-user access.