Information System Audit
Organizations undertake audits for many reasons. An audit can help the enterprise ensure effective operations and
attest to its compliance with administrative and legal regulations. It can confirm for management that the business
is functioning well and is prepared to meet potential challenges. Perhaps most important, it can assure stakeholders
of the financial, operational and ethical well-being of the organization. Information systems (IS) audits support all
those outcomes, with a special focus on the information and related systems upon which most businesses and public
institutions depend for competitive advantage.
Define audit subject.
Define audit objective
Set audit scope.
Perform preaudit planning.
Locations and facilities to be audited
Sources of information to prepare tests
Determine audit procedures and steps for
data gathering