CHAPTER 11: JUNE - WHAT THE AUDITORS SHOULDN’t KNOW…

Internal audit has history

The relationship with internal audit can often be fractious, but at the outset of this book, the intention was to portray information security in a positive light. Befriending internal audit is very much part of the experience, because you can so often find that any changes you need to implement have already been identified, long ago and many times over, in previous audit reports.

In the case of the organisation at the heart of many of these experiences, it had been subject to ‘special measures’ and was fraught with political infighting. This had a highly detrimental impact on the ability of the organisation to run effectively and efficiently. While it may feel ...

Get Once More Unto the Breach: Managing information security in an uncertain world now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.