Audit: is it possible to more efficiently? Typically, the model of it audit with the goal based on risk assessment or on the auditor's expertise in any particular area. If a customer has a question about anything, it can be represented as a risk. It should be noted that management based on risk requires a fairly advanced and specific management, such a model is not very common not only for us but also to the west. At the same time, often conduct an audit in order to reduce any One key risk. Everyone remembers the epic with the it audit "2000 problem". Similarly, with efficiency: as a rule, we are talking about one or two articles in the budget, and the audience's attention specifically to attract them. In such matters, often turn to the examination.
The main stages of the audit in fact, conducting any it audit is roughly the following steps: Clarification of goals and harmonization of it audit, Conduct a survey and Documentation of inspections Preparation of recommendations and report generation. Typically, for such works using interviews, review of available documents. At nic has its own base screening questions to determine the real situation in the selected model. What you should pay attention to? The most important thing – is to clearly define the purpose of the it audit, write them down and discuss with the auditor as a goal and strategy for the audit. Organization needs to plan in advance the possibility of conducting the audit.