Robert E. Davis's Blog, page 12

...a follow-up process is established to enable reasonable assurance that each audit conducted by an IT auditor provides optimal benefit to the entity...

IT audit area reporting conveys an opinion concerning control adequacy based on planning, studying, testing and evaluating material or significant auditable units.

Three audit fieldwork standards guide auditors in the performance of audits. Considering the collection of evidential matter necessary to render an opinion, these standards serve as the basis for auditing concepts pertaining to the study and evaluation of controls as well as related compliance and substantive testing.

Analytically, to provide the most suitable IT audit evidence, various classification schemes can be adopted to organize the diverse testing techniques.

Systems and infrastructure design effects the controls relied on by an entity

Organizational resilience imposes proactive preparation for potential incidents in order to avoid suspension of critical operations and services...