Page 10 - ITGC_Audit Guides
P. 10
Introduction
This guidance helps internal auditors understand
how IT operates broadly across an organization and Note
the significant relationship that IT plays in an Terms in bold are defined in the
organization’s success. The first section discusses Glossary in Appendix B.
the goals of IT, its relationship with the organization
and overall information technology governance.
Subsequent sections delve into details on the specific technologies and IT processes that should
be fundamentally understood by internal auditors, whether they specialize in IT audit or not.
As IT is a fundamental part of every organization, it is crucial for the chief audit executive (CAE)
and internal auditors to have a baseline understanding and knowledge of IT and the management
of critical data within their organizations. Protecting enterprise data, supporting IT operations, and
safeguarding technology are just a few of the challenges organizations face today. While these
challenges may seem daunting, they are more than offset by the potential opportunities IT allows
an entity, such as optimizing its operations, innovating product development, and leveraging
processes including data analytics, and technologies such as robotic process automation (RPA),
or artificial intelligence (AI).
IT is imperative to an organization’s strategy, and understanding the impacts technology can
have on business processes and risk management will help elevate internal audit as a trusted
advisor and value creator.
Figure 1 depicts the significant IT areas in which internal auditors should have a foundational
understanding.
2 — theiia.org
