Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

Audit Guidelines

Welcome to the Audit Guidelines topic!

Collaborate, contribute, consume and create knowledge around topics such as Audit charter, independence (organisational and professional), engagement planning, Risk Assessment, sampling, reporting and follow-up activities.

ISACA members can participate by clicking on the “Join this Community” button. You must be signed into the site. Set your alerts to be notified of new discussion activity within this community. Not an ISACA member? Join now!

This Topic Has:
1024 Members
1 Online
13839 Visits

Community Leader

Knowledge Center Manager

Knowledge Center Manager

Title: Become a Topic Leader!

Badge: Energizer


NEW! Activity Badges

Badges help others understand your level of community activity and your reputation as a contributor within the Knowledge Center. Learn More.

Discussions: 38 total

Must be a Topic member to contribute
View All »
Can anyone please share with me their organizational document on "Deficiency Assessment Methodology" this document is used by Internal controls team to see what gaps identified in ITGC and ICFR testing are material and whether additional sample testing is...
Anita165 | 2/5/2016 3:36:28 PM | COMMENTS(0)
This is a really good article on finding the right external audit firm, written  by Rob Stroud (a past ISACA President).
Phil Green | 12/27/2015 8:57:00 AM | COMMENTS(0)
Members of this community might be interested in the bi-monthly "Tone at the Top" newsletter the Institute of Internal Auditors publishes that you can subscribe to for free:
Phil Green | 12/6/2015 12:18:18 PM | COMMENTS(0)
Good afternoon all.   I'm currently working on my IT audit plan for next year and an important contributor to this process is our IT risk assessment.  I'm looking for input on what frameworks are used in the community. Could you share your thoughts? 
Arturo184 | 11/10/2015 3:17:40 PM | COMMENTS(4)
Hello Guys, I have recently become an IT Internal Auditor, although I have extensive experience in general IT field. I would like to know what is best between having IT Audit Charter independent of general Internal Audit charter and consolidating them int...
Setsabi1 Matsoso | 11/9/2015 11:15:37 AM | COMMENTS(2)
Where a contract with a 3rd party supplier provides the customer a right to audit, what would be a reasonable expectation for auditor access to artifacts that contain supplier intellectual property? For example, at an on-site audit, I would expect access ...
Phil Green | 11/8/2015 2:08:23 AM | COMMENTS(3)

Documents & Publications: 75 total

Must be a Topic member to contribute
View All »
Posted by ISACA 22 days ago
Posted by ISACA 92 days ago
Ways to address and resolve SOD conflicts for SOX compliance are presented in an easily implementable format. - By Bala Kaundinya, Risk Advisory Manager from Ernst & Young
Posted by Bala_Krishnan_CISA_CIPP 246 days ago
Posted by ISACA 331 days ago
Posted by ISACA 333 days ago

Events & Online Learning: 8 total

Journal Articles: 43 total

Volume 6, 2015
by Ed Gelbstein, Ph.D.
An auditor will sooner or later be faced with two kinds of conflicts: conflict of interest and interpersonal conflict.
Volume 1, 2016
by Graciela Braga, CGEIT, COBIT Foundation, CPA
IS and IT auditors, assurance professionals and assessors must comply with different professional standards and maintain and improve their own process work at the appropriate capability level to meet the assignment objective...
Volume 1, 2016
by Ed Gelbstein, Ph.D.
“Trust, but verify” is a Russian proverb that became more widely known when then-US President Ronald Reagan used it in the 1980s.
Volume 1, 2016
by ISACA Member and Certification Holder Compliance
An up-to-date listing of the current IT Audit and Assurance Standards, Guidelines, and Tools and Techniques
Volume 4, 2015
by Ed Gelbstein, Ph.D.
Having been audited many times over the years, it would have been of great help if the auditors had taken the time to brief us on what they were going to do, why and how this would be done, and what our role in the process would be.
Volume 4, 2015
by Muhammad Mushfiqur Rahman, CISA, CEH, CHFI, CCNA, ISO 27001 LA, ITIL V3, MCITP, MCP, MCSE, MCTS, OCP, SCSA
Server auditing is an important task to ensure platform-level security in an IT infrastructure and to ensure the proper configuration of Linux server security.

Wikis: 2 total

Blog Posts: 2 total

Must be a Topic member to view blog posts
Agile technique in software development has been around for quite some time. There have been efforts to adopt the agile techniques for strategic planning, alignment and execution. Following are some of the relevant articles/blog posts in this area. The to...
Posted By : SA | 0 comments
13 Nov 2014
Posted By : masarker | 4 comments