(From IIA Global Technology Audit Guide Auditing IT Projects). GTAG 28, 2, Project Plan and Approach, , Objective and scope, The scope of the project. Information for the audit program was also obtained as necessary from the Institute of Internal Auditor’s GTAG (Global Technology Audit Guide) #12 ( Auditing IT. Start studying GTAG Auditing IT Projects: Appendix A – Project Management. Learn vocabulary, terms, and more with flashcards, games, and other study.

Author: Fenricage Muk
Country: Turkmenistan
Language: English (Spanish)
Genre: History
Published (Last): 17 September 2010
Pages: 101
PDF File Size: 6.18 Mb
ePub File Size: 18.49 Mb
ISBN: 980-9-12503-214-9
Downloads: 72490
Price: Free* [*Free Regsitration Required]
Uploader: Dasida

The groundwork of information system audit.

The difference that Internal Auditors should know about. His areas of expertise and focus include helping organizations modernize and embrace digital shift and transformation, including giving advice on the right technology assets and models to consider and implement, redesign of enterprise processes in preparation for technology transformation, software licensing strategy and management, technology governance and risk management, cybersecurity and forensic services, among others.

The organization shall establish and maintain an operation and management gtaag O He has significant and well-balanced technical and management skills as well as vendor and end-user experience; having worked for top-tier global organizations such as IBM Philippines and Sun Microsystems during the earlier part of his career and with UNILAB United Laboratories Inc.

He rejoined the firm in his present capacity.

Add to Calendar

Committee Members and Chapter Leaders. The basic concepts of information security. He left the firm for a while to understand better the corporate world and joined one of the largest domestic ICT organization as Chief Audit Executive. Security in the cloud. This Control has the following implementation support Control s: Five key components of IT projects for internal auditors to consider when building an audit approach.


Continuous control monitoring CCM. Information security policy, and strategy. Mission of Internal Audit.

There should be a specific schedule to assess and mitigate mission risks, but it should be flexible enough to be changed when necessary. Front page News Browsing. How the internal audit activity can actively participate in the review of projects while maintaining independence.

Insufficient attention to these challenges can result in wasted money and resources, loss of trust, and reputation damage. Plenary 1 – Auditing Smart Devices: Universal Service Management Body of Knowledge.

Trending Pulse of Internal Audit. Issuing the audit report. The process of information systems audit. Standards, and recommendations concerning IT security.

The fundamentals of internal audit.

Global Technology Audit Guide (GTAG) 12: Auditing IT Projects

She was part of the Core Team of the first company who earned the BCM Certification in the Philippines wherein there were no non conformities cited by the 3rd party assessors.

She has helped a large commercial bank and software development houses to be CMMI compliant. Mynt is joint venture of Globe Telecom and Alibaba Group.

Visit the IIA Bookstore for more information.

Information security | Digital Textbook Library

This is a past event. Pg 8, Pg 20, Exam Obj 5. Elaborating and operating the information security program. Audit of the information system.

Methods, and procedures of information systems audit. Also, he worked as the head office and information system audit division head in a banking subsidiary of one of the biggest conglomerates in the Philippines. Cooperation by IT auditor in auditing business processes. Key project management risks. Registration for this event is now closed. The organization shall determine the required verification, validation, inspection, monitoring, and test activities for the product and the product acceptance criteria during the product realization planning.


Ltd starting July Preparing for the IT audit. Best practice assisting the information systems auditor. Service suditing and service management. This will be a diverse group of delegates coming from a wide range of industries. The framework and supporting method should be integrated with the programme management processes. He has more than 20 years of professional experience in Technology and Risk consulting. In addition to that, she also led the business and technology resiliency group of a multinational financial services corporation in the Philippines making it compliant to ISO standard and to the Guidelines on Information Technology Risk Management of the Central Bank of the Philippines.

This framework should, among other things, specify the project management methodology to be adopted and applied to these projects. Early involvement by internal auditors can help ensure positive results and the accompanying benefits. How data security software works.

They can serve as a bridge between individual business units and the IT function, point out previously unidentified risks, and recommend controls for enhancing outcomes. Information Technology Controls The business case includes the following key components: Establish and maintain a system design project management framework.