IT Audit
Article REF: H5570 V2

IT Audit

Author : Jean-Hugues PETIT

Publication date: December 10, 2021 | Lire en français

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

Overview

ABSTRACT

The boom in information systems, which have become indispensable today, is draining lot of constraints, vulnerabilities, performance obligations, development, change ...

Faced with these challenges, recourse to IT audit is becoming more and more relevant, necessary, and even essential.

Whether initiated or undergone, everyone will certainly experience at least once an audit, whatever it is.

The purpose of this article is to present what an IT audit is, its purpose process, report and conclusions.

Not being able to be exhaustive in the context of an article, it presents the essentials allowing the reader to rely on a solid basis to lead, or support him in this kind of mission.

Read this article from a comprehensive knowledge base, updated and supplemented with articles reviewed by scientific committees.

Read the article

AUTHOR

 INTRODUCTION

What is an IT audit?

The dictionary "Le Petit Robert" defines an audit as "answers to questions formulated to a person capable of hearing and, above all, capable of understanding the answers, then passing them on to others".

The applications of auditing are therefore as numerous as there are business sectors.

More explicitly in the corporate context, the "Larousse" defines it using accounting and management control as an example: "The procedure of ensuring that a company's accounts are complete, sincere and regular, vouching for this to the firm's various interested partners and, more generally, passing judgment on the quality and rigor of its management".

The audit then applies, or can apply, to the company's various activities:

  • production ;

  • accounting ;

  • human resources ;

  • quality...

It seems necessary, even obvious, that it also exists for its I.S. (information system), present in all (or almost all) of its businesses and activities:

  • its infrastructure ;

  • its equipment ;

  • its interconnections ;

  • its dedicated service...

It can be used to assess performance, safety, relevance...

The need for an IT audit is often felt by the company itself, when it notices a loss of competitiveness, less and less adapted tools, or an increasingly palpable exposure to threats...

On the other hand, it can be ordered by a third party to check :

  • the company's production capacity;

  • its respect for production quality;

  • solvency ;

  • its guarantee of secure storage of customer data;

  • compliance with laws and regulations...

The audit's conclusions, set out in a report, often lead to radical changes in strategy, organization, management, equipment and so on.

In some cases, the financial consequences can be critical: this is when an IT audit can go far beyond the strictly "IT" scope.

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?

KEYWORDS

audit   |   inventory of fixtures   |   systems assessment

Ongoing reading
IT Audit

Article included in this offer

"Software technologies and System architectures"

( 227 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details
Contact our team FAQ