When we began writing this book, we had a fundamental tenet: Write a clear handbook for creating the organization’s IT audit function and for performing their IT audits. We wanted this book to provide more than checklists and textbook theories and instead to provide real-life practical guidance from people who have performed IT audit work day in and day out in real corporations. If we’ve been successful, reading this book will accomplish three objectives for the reader, above and beyond what can be obtained from most IT auditing books and classes:
Guide the reader in how to perform the IT audit function in such a way that the auditors maximize the value they provide to the company.
Part I of this book is dedicated to providing ...