Press Release


 ISACA Provides Guidance for Successfully Outsourcing IT Services 

New Audit Program Helps Organizations Put Effective Strategies in Place

Rolling Meadows, IL, USA (1 June 2017) — Organizations are increasingly seeking to outsource IT services as they pursue cost efficiencies and the ability to tap into specialized resources, but determining how to devise an outsourcing strategy can be complicated.

A new audit program from global business technology association ISACA provides decision-makers with clear direction on how to optimize their outsourcing relationships, including vendor selection, onboarding and ensuring that appropriate controls are in place.

ISACA’s Outsourced IT Audit Program includes:

  • Governance and risk assessment processes, plus cost benefit analysis, prior to initiating an outsourcing IT model
  • Internal controls and requirements for the selection process of an outsourced IT vendor
  • Appropriate steps to manage the transition from in-house to outsourced providers of IT services
  • Key monitoring and quantitative controls of the service delivery from the outsourced IT provider

“The volume of technology-driven challenges and responsibilities can be overwhelming for many organizations in this era of digital disruption,” said Christos Dimitriadis, Ph.D. CISA, CISM, CRISC, chair of ISACA’s Board of Directors and group director of Information Security for INTRALOT. “The guidance provided in this audit program will help enterprises make strategic decisions about outsourcing IT services that will position them for success and allow them to place greater focus on their core capabilities.”

Guidance put forth as part of the vendor selection process includes detailing steps needed to make sure the vendor complies with clients’ regulatory requirements, the vendor is an industry leader in the IT outsourcing space, the vendor has established a business continuity plan, the codes of conduct between the client and the vendor are aligned, and contract terms are appropriate.

ISACA audit programs have been developed and reviewed by leading audit and assurance professionals worldwide. They can be downloaded to allow customization that fits varying work environments.

The Outsourced IT Audit Program is available for purchase at a reduced rate for ISACA members.



Nearing its 50th year, ISACA® ( is a global association helping individuals and enterprises achieve the positive potential of technology. Today’s world is powered by technology, and ISACA equips professionals with the knowledge, credentials, education and community to advance their careers and transform their organizations. ISACA leverages the expertise of its half-million engaged professionals in information and cyber security, governance, assurance, risk and innovation, as well as its enterprise performance subsidiary, CMMI®, to help advance innovation through technology. ISACA has a presence in more than 188 countries, including more than 215 chapters and offices in both the United States and China.



Jay Schwab, +1.847.660.5693,
Kristen Kessinger, +1.847.660.5512,
Joanne Duffer, +1.847.660.5564,