What is the role of an information systems audit?
What will be an ideal response?
An information systems audit examines the firm's overall security environment as well as controls governing individual information systems. The auditor should trace the flow of sample transactions through the system and perform tests, using, if appropriate, automated audit software. The information systems audit may also examine data quality.
The audit should review technologies, procedures, documentation, training, and personnel. A thorough audit will even simulate an attack or disaster to test the response of the technology, information systems staff, and business employees.
The audit lists and ranks all control weaknesses and estimates the probability of their occurrence. It then assesses the financial and organizational impact of each threat. Management is expected to devise a plan for countering significant weaknesses in controls.
You might also like to view...
When used as a subject or as a modifier of the subject, each, every, either, neither, one, another, much, anybody, anyone, everybody, everyone, somebody, someone, nobody, and no one require ______________
a. an adjective b. a conjunction c. a pronoun d. singular verbs
Which of the following micro-image formats is widely used?
A. Aperture cards B. Film strips C. Roll film D. Microfilm