February 2011
Intermediate to advanced
512 pages
15h 37m
English
In this chapter we will discuss how to audit entity-level controls, which are pervasive across an organization. We will be discussing the auditing of information technology (IT) areas such as
• Strategic planning and technology roadmaps
• Performance indicators and metrics
• Project approval and monitoring processes
• Policies, standards, and procedures
• Employee management
• Asset and capacity management
• System configuration change management
Because entity-level controls are pervasive across an organization, you can audit them once and feel confident that you have covered the topic for the whole company. This chapter discusses areas that the auditor should expect to see centralized in an ...