Profile of a woman with a C overlay

IT Auditor

An IT Auditor is responsible for supporting the risk assessment or audit of IT general controls (ITGC) for compliance with internal procedures, relevant standards and/or applicable laws and regulations with the supervision of the senior auditor or equivalent. This role assists in conducting an independent, risk-based audit of controls in the applications and underlying technology which support enterprise business processes. IT Auditors may be internal or external and can be generalists or choose to specialize in areas such as AI, compliance, or cybersecurity. While both internal and external IT Auditors perform similar tasks, an external auditor is affiliated with an independent third-party.

Most common technical skills for IT Auditors

According to market employment data, these are the top technical skills requested by employers:

Icon of a monitor with a check mark
Auditing
Icon of a monitor with a check mark
Risk analysis
Icon of a monitor with a check mark
Information systems
Icon of a monitor with a check mark
Internal auditing
Icon of a monitor with a check mark
Computer science
Icon of a monitor with a check mark
Data analysis
Icon of a monitor with a check mark
Internal controls
Icon of a monitor with a check mark
Auditor's report
Icon of a monitor with a check mark
External auditing

Gain the technical skills needed to advance your career

You can rely on ISACA to provide the training, credentials, tools, and resources needed to meet current employer demands and emerging needs not yet widely represented in job descriptions.

CISA Certified Information Systems
Certification

CISA—Certified Information Systems Auditor

Prove your expertise in IS/IT auditing, control and security and be among the most qualified in the industry.
Artificial Intelligence Audit Toolkit
Audit Program

Artificial Intelligence Audit Toolkit | Digital | English

Strengthen your audits as AI becomes central to enterprise operations. Use this toolkit to assess, evaluate, and guide AI systems under increasing scrutiny.
Introduction to AI for Auditors Online Course
Online Course

Introduction to AI for Auditors Online Course

Introduction to AI for Auditors" provides a comprehensive introduction to Artificial Intelligence (AI) to help you harness the power of AI in your auditing practice.
IT Risk Fundamentals Certificate
Certificate

IT Risk Fundamentals Certificate

ISACA’s IT Risk Fundamentals Certificate and related training is ideal for professionals who wish to learn about risk and information and technology (I&T)-related risk, whom currently interact with risk professionals, or are new to risk and interested in working as a risk or IT Risk profession.
witaf4
Book

ITAF, 4th Edition | Digital | English

Get the guidance and techniques that will lend consistency and effectiveness to your audits. The new 4th edition of ITAF outlines standards and best practices aligned with the sequence of the audit process (risk assessment, planning and field work) to guide you in assessing the operational effectiveness of an enterprise and in ensuring compliance.
Cybersecurity Fundamentals
Certificate

Cybersecurity Fundamentals Certificate

Cybersecurity Fundamentals affirms your understanding and ability to perform in today’s cybersecurity-threatened business and IT environments.
COBIT 2019 Foundation Online Course
Online Course

COBIT 2019 Foundation Online Course

This Foundation Course is intended for current COBIT 5 Foundation Certificate holders as well as those new to COBIT who are interested in achieving the latest foundation certificate.
Risk IT Framework, 2nd Edition
Book

Risk IT Framework, 2nd Edition | Digital | English

The Risk IT Framework is designed to assist in developing, implementing or enhancing the practice of risk management by: Connecting the business context with the specific I&T assets.

Looking for a different path?

Explore other role areas and find the one that aligns with your career goals.

See more role areas