IT Audit Process/Execution (Planning) Flashcards

1
Q

Objective/Purpose

A

What is the audit about

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Select a Framework

A

COSO, COBIT

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Audit request/PBC List

A

To obtain evidence based on control of scope

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Audit program/ Template

A

If audit program never been created, pull from management directives to see which controls should be in place.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Kick off Meetinging

A

Sit w/ audit team to go over walkthrough of controls that I intend to test, and to introduce the audit team to discuss framework, timeline any other questions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Internal Kickoff Meeting

A

Delegate responsibilities within internal team.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Risk and Control Matrix (RCM)

A

Which contains risk associated control program used to text controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Walkthrough

A

It’s a conversation via face to face, email or by phone

To discuss about a request using sample of evidence provided to determine of controls are designed appropriately.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Test of controls

A

Select multiple sample and test the sample to determine whether controls work correctly.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What does validation mean

A

It’s a control gap. Goes from potential issue to validated issue if no evidence is provided.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is a milestone

A

It’s a list of noted control gaps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly