Implementation > Planning an audit
|
Implementation > Planning an audit |
|
For those planning an audit of IT processes, CobiT has suggested the following forms as an aid to this activity:
 |
Prior Audit Work Form | To identify whether audit work related to the IT process was included in the prior audit's scope. |
|
Entity Short Form | To identify which IT processes are considered the most important and how well management believes these processes are being performed. |
|
Entity Long Form | To document management and business process owner assessments of which IT processes are most important and how well management believes these processes are being performed. |
|
Risk Assessment Form | To assist in identifying those IT processes where risk-based auditing would indicate audit work may be warranted. |
|
Contract/SLA Form | Used to identify the responsible party when the IT process is not the direct responsibility of internal management. |
|