A Global Look at IT Audit Best Practices 


2019 Global IT Audit Benchmarking Study2019 SNEAK PEEK

Get an executive summary of the full 2019 results coming later this year.

  Download your copy now (registration required, 832K)  


2018 Report: Assessing the International Leaders in an Annual ISACA/Protiviti Survey

A Global Look at IT Audit Best PracticesISACA and Protiviti partnered to conduct the seventh annual IT Audit Benchmarking Survey. Conducted online, the global survey consisted of a series of questions grouped into seven categories:

  • Emerging Technology and Business Challenges
  • IT Implementation Project Involvement
  • IT Audit in Relation to the Overall Audit Department
  • Risk Assessment
  • Audit Plan
  • Cybersecurity and the Audit Plan
  • Skills, Capabilities and Hiring

  Download Report (registration required, 2M)

  Provide feedback on this document

  View News Release


Cyber security threats. Digital transformation. Migration to cloud. Agile development … The volume, magnitude and speed of the technological changes underway in organizations today continue to increase in dramatic fashion, from business and digital transformation to the growing complexity of data management. Many of these changes give rise to new risks, which ultimately demand more from IT audit groups: more knowledge, more skills and training, more advanced auditing technology and approaches, more resources, and more interaction between the IT audit function and other business leaders, executives and board members.

The results of the latest global IT Audit Benchmarking Study from ISACA and Protiviti paint a vivid picture of the ways IT audit leaders and professionals are succeeding, as well as where they need to step up their games, especially given the omnipresent nature of digital transformation efforts, cyber security risk and technological advancements. This year’s results identify several areas of progress (including involvement in data conversion activities). Yet most IT audit functions need to make a range of improvements if they are to deliver the strategic insights that key stakeholders expect of them in their role as real-time IT-risk advisors, as well as help their organizations address historic technological transformation and explosions in the number and severity level of cyber security risks.

The analyses of this year’s ISACA/Protiviti survey findings will help IT audit leaders and professionals understand and address gaps in their capabilities, elevate IT audit’s focus beyond check-the-box compliance, strengthen valuable partnerships with the board and business leaders, demonstrate value in strengthening organizational cyber security and, ultimately, exceed stakeholder expectations.

View Infographic
View Infographic


View past surveys

  2017 IT Audit Benchmarking Survey (registration required, 4M)

View Infographic
View 2017 Infographic

  2015 IT Audit Benchmarking Survey (registration required, 6M)

View Infographic
View 2015 Infographic 

  2014 IT Audit Benchmarking Survey (registration required, 2.3M)

View Infographic
View 2014 Infographic