This document outlines risks and controls common to the application control review process in a risk and control matrix ...

This memo outlines the assumptions and decision used to scope the documentation efforts around application security.

This document outlines risks and controls common to the "manage service" process in a risk and control matrix (RCM) form...

This issue of The Bulletin provides an update on the future auditor and its implications to internal audit’s value propo...

This memo documents internal audit's summary of findings from a data governance review.

In our latest edition of Internal Auditing Around the World, we interviewed 22 inspiring female internal audit leaders w...

This work program outlines steps for an AS400 review audit. It identifies major areas to investigate during a general or...

This audit work program focuses on computer operations and IT job scheduling. Audit objectives and test steps help deter...

This audit program outlines procedures to evaluate six system control objectives.

This audit program outlines steps for reviewing the security of systems running the UNIX operating system.

This audit work program outlines detailed steps to review the controls for an RACF mainframe.

This article summarizes practical principles for recognizing emerging risks.