Purpose
An IT audit is different from a financial statement audit. While a financial audit's purpose is to evaluate whether an organization is adhering to standard accounting practices, the purposes of an IT audit are to evaluate the system's internal control design and effectiveness. This includes, but is not limited to, efficiency and security protocols, development processes, and IT governance or oversight. Installing controls are necessary but not sufficient to provide adequate security. People responsible for security must consider if the controls are installed as intended, if they are effective if any breach in security has occurred and if so, what actions can be done to prevent future breaches. These inquiries must be answered by independent and unbiased observers. These observers are performing the task of information systems auditing. In an Information Systems (IS) environment, an audit is an examination of information systems, their inputs, outputs, and processing.
Read more about this topic: Information Technology Audit
Famous quotes containing the word purpose:
“I have always felt that the real purpose of government is to enhance the lives of people and that a leader can best do that by restraining government in most cases instead of enlarging it at every opportunity.”
—Gerald R. Ford (b. 1913)
“I want that glib and oily art
To speak and purpose not, since what I well intend,
I’ll do’t before I speak.”
—William Shakespeare (1564–1616)
“The technologist was the final guise of the white missionary, industrialization the last gospel of a dying race and living standards a substitute for a purpose in living.”
—Max Frisch (1911–1991)