Audit Report

How to handle the IT Auditor - A simple checklists

1. Help the auditor gather information.

2. Do not expect to see the audit report.

3. If asked for a response, provide it promptly.

4. Work with internal audit to identify key risks for the organization.

5. If an external audit is expected, talk with system administrators to learn how they are implementing security policies and procedures.

6. Conduct a mock audit before a real one to identify potential findings.

Download free SysTrust Audit Framework Templates

Download Free IT Outsourcing Cost-of-Living Adjustment (COLA) Provisions Checklist

1. What is a COLA provision? (A provision that calls for an adjustment to the fees to reflect inflation)

2. At what point during the term of the Agreement will COLA apply?
- Is any inflation built into the fees?
- To what extent should the vendor be managing inflation?

Below sample of Information Technology (IT) Audit Report. This sample templates report could be used to prepare your audit of Management Information System. This template mainly focusing on detail finding and recommendation that should be done by the auditee. The most difficult part of IT audit process is to ensure that every recommendation could be enacted.

The structure of this report are:
1. Audit Objectives: To assess [Name of Company] compliance with the [Name of Standard] Standard
2. Overall conclusion:

So what is the primary objectives of PCAOB Auditing Standard No. 5 Regarding Audits of Internal Control Over Financial Reporting

1. Focus the Audit on Most Important Matters
- Top-down, risk-based approach that emphasizes use of judgment.
- Risk assessment is pervasive throughout the audit, including the identification and testing of controls

2. Eliminate Unnecessary Procedures
- Removing the requirement to evaluate management's process
- Consideration of knowledge from prior years (however, rotation is still not permitted).
- Eliminates “principal evidence” requirement
- Provides flexibility to use the work of others to a greater extent, including within the control environment, and performance of walkthroughs under our direct supervision