Purpose
An IT audit is different from a financial statement audit. While a financial audit's purpose is to evaluate whether an organization is adhering to standard accounting practices, the purposes of an IT audit are to evaluate the system's internal control design and effectiveness. This includes, but is not limited to, efficiency and security protocols, development processes, and IT governance or oversight. Installing controls are necessary but not sufficient to provide adequate security. People responsible for security must consider if the controls are installed as intended, if they are effective if any breach in security has occurred and if so, what actions can be done to prevent future breaches. These inquiries must be answered by independent and unbiased observers. These observers are performing the task of information systems auditing. In an Information Systems (IS) environment, an audit is an examination of information systems, their inputs, outputs, and processing.
Read more about this topic: Information Technology Audit
Famous quotes containing the word purpose:
“Man, her last work, who seemed so fair,
Such splendid purpose in his eyes,
Who rolled the psalm to wintry skies,
Who built him fanes of fruitless prayer,
Who trusted God was love indeed
And love Creation’s final law—
Though Nature, red in tooth and claw
With ravine, shrieked against his creed—”
—Alfred Tennyson (1809–1892)
“I have no purpose to introduce political and social equality between the white and black races. There is a physical difference between the two, which, in my judgement, will probably for ever forbid their living together upon the footing of perfect equality; and inasmuch as it becomes a necessity that there must be a difference, I ... am in favour of the race to which I belong having the superior position.”
—Abraham Lincoln (1809–1865)
“Men may construe things after their fashion,
Clean from the purpose of the things themselves.”
—William Shakespeare (1564–1616)