Article | REF: H5570 V2

IT Audit

Author: Jean-Hugues PETIT

Publication date: December 10, 2021

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!


Overview

Français

ABSTRACT

The boom in information systems, which have become indispensable today, is draining lot of constraints, vulnerabilities, performance obligations, development, change ...

Faced with these challenges, recourse to IT audit is becoming more and more relevant, necessary, and even essential.

Whether initiated or undergone, everyone will certainly experience at least once an audit, whatever it is.

The purpose of this article is to present what an IT audit is, its purpose process, report and conclusions.

Not being able to be exhaustive in the context of an article, it presents the essentials allowing the reader to rely on a solid basis to lead, or support him in this kind of mission.

Read this article from a comprehensive knowledge base, updated and supplemented with articles reviewed by scientific committees.

Read the article

AUTHOR

 INTRODUCTION

What is an IT audit?

The dictionary "Le Petit Robert" defines an audit as "answers to questions formulated to a person capable of hearing and, above all, capable of understanding the answers, then passing them on to others".

The applications of auditing are therefore as numerous as there are business sectors.

More explicitly in the corporate context, the "Larousse" defines it using accounting and management control as an example: "The procedure of ensuring that a company's accounts are complete, sincere and regular, vouching for this to the firm's various interested partners and, more generally, passing judgment on the quality and rigor of its management".

The audit then applies, or can apply, to the company's various activities:

  • production ;

  • accounting ;

  • human resources ;

  • quality...

It seems necessary, even obvious, that it also exists for its I.S. (information system), present in all (or almost all) of its businesses and activities:

  • its infrastructure ;

  • its equipment ;

  • its interconnections ;

  • its dedicated service...

It can be used to assess performance, safety, relevance...

The need for an IT audit is often felt by the company itself, when it notices a loss of competitiveness, less and less adapted tools, or an increasingly palpable exposure to threats...

On the other hand, it can be ordered by a third party to check :

  • the company's production capacity;

  • its respect for production quality;

  • solvency ;

  • its guarantee of secure storage of customer data;

  • compliance with laws and regulations...

The audit's conclusions, set out in a report, often lead to radical changes in strategy, organization, management, equipment and so on.

In some cases, the financial consequences can be critical: this is when an IT audit can go far beyond the strictly "IT" scope.

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!


The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors
+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year
From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects

KEYWORDS

audit   |   inventory of fixtures   |   systems assessment


This article is included in

Security of information systems

This offer includes:

Knowledge Base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

Practical Path

Operational and didactic, to guarantee the acquisition of transversal skills

Doc & Quiz

Interactive articles with quizzes, for constructive reading

Subscribe now!

Ongoing reading
IT Audit