© Mark E. Damon - All Rights Reserved Another Presentation © 2011 - All rights Reserved.
IS Audit Best Practices · 2019-03-20 · © 2016 ISACA. All Rights Reserved© 2016 ISACA.All...
13
© 2016 ISACA. All Rights Reserved © 2016 ISACA. All Rights Reserved IS AUDIT A Global Perspective Ron Hale Ph.D., CISM Chief Knowledge Officer
Transcript of IS Audit Best Practices · 2019-03-20 · © 2016 ISACA. All Rights Reserved© 2016 ISACA.All...
© 2016 ISACA. All Rights Reserved© 2016 ISACA. All Rights Reserved
IS AUDIT
A Global Perspective
Ron Hale Ph.D., CISM
Chief Knowledge Officer
© 2016 ISACA. All Rights Reserved
TOP TECHNOLOGY CHALLENGES
2
Emerging Technology and infrastructure changes –
transformation, innovation disruption
IT security / privacy/ cybersecurity
Resource / staffing / skills challenges
Infrastructure management
Cloud computing / virtualization
Bridging IT and the business
Big data and analytics
Project management/ change management
Regulatory compliance
Budgets and controlling costs
YoY Trend 2014 2013
1
2
3
4
5
6
7
8
9
10
3
1
2
9
10
7
4
5
7
1
7
6
8
© 2016 ISACA. All Rights Reserved
DO YOU CONDUCT IS AUDIT RISK ASSESSMENTS?
3
© 2016 ISACA. All Rights Reserved
FREQUENCY OF IS AUDIT RISK ASSESSMENT UPDATES
4
© 2016 ISACA. All Rights Reserved
INVOLVEMENT IN SIGNIFICANT TECHNOLOGY PROJECTS
5
© 2016 ISACA. All Rights Reserved
AUDIT OF IT GOVERNANCE PROCESS
6
© 2016 ISACA. All Rights Reserved
TOP 3 AUDIT AREAS BY PERCENTAGE
7
IT General Controls Audits
IT Process Audits
Application Audits
Cybersecurity Audits
Analyzing Data (Analytics)
Integrated Audits
Pre and Post Implementations
Sarbanes-Oxley or related country
specific compliance
Africa Asia EuropeLatin
America
Middle
East
North
America Oceania
© 2016 ISACA. All Rights Reserved
LEVEL OF IMPORTANCE OF TECHNICAL SKILLS
8
Control Analysis
Risk Analysis
Process Assessment
Data Analysis
Accounting / Audit
Project Management
Consulting
Significant Moderate Minimal None
66%
60%
53%
38%
37%
31%
23%
29%
33%
39%
44%
42%
48%
50%
3%
5%
5%
15%
17%
17%
21%
1%
2%
3%
3%
4%
4%
6%
© 2016 ISACA. All Rights Reserved
LEVEL OF IMPORTANCE OF NON-TECHNICAL SKILLS
9
Relationship Building
Report Writing
Team Building
Strategic Thinking
Conflict Management
Negotiation
Explain Technical Issues
Leadership
Significant Moderate Minimal None
68%
64%
52%
50%
47%
45%
73%
41%
27%
30%
38%
40%
40%
42%
21%
46%
3%
4%
8%
8%
10%
10%
4%
10%
2%
2%
2%
2%
3%
3%
2%
3%
© 2016 ISACA. All Rights Reserved
DEDICATED IS AUDIT DIRECTOR POSITION
10
© 2016 ISACA. All Rights Reserved
REQUIRE THE CISA CERTIFICATION
11
© 2016 ISACA. All Rights Reserved
12
What is the
Future of
IS Audit?
A Global Look at IT Audit Best Practices Available at www.isaca.org
© 2016 ISACA. All Rights Reserved
THANK YOU
13
