25th Meeting of the INTOSAI Working Group on IT Audit Brasilia, Brazil, April 25 – 26, 2016 Madhav Panwar - US, GAO Report on WGITA IDI Handbook on IT.

Slides:



Advertisements
Similar presentations
ISCITA-IDI Cooperation The way ahead Else Karin Kristensen Deputy Director General Pritom Phookun Programme Manager.
Advertisements

INTOSAI Working Group on Public Debt Chairman’s Report Mr. Roberto Salcedo Aquino Representative of the WGPD’s Chair INTOSAI Working Group on Public Debt.
Goal 3 Knowledge Sharing & Knowledge Services Update from Knowledge Sharing Committee SAI India 1.
3i Programme PSC Steering Committee Meeting, May 2014, Bahrain.
Report of the Knowledge Sharing Committee (Goal-3) Ms. Indu Agrawal SAI-India Comptroller and Auditor General of India1.
The 22 nd meeting of the INTOSAI Working Group on IT Audit (WGITA) KPI Project Final Report — Key Performance Indicators Methodology for Auditing IT Programs.
Development of ISSAI 5300 on IT AUDIT
Report of the INTOSAI Development Initiative 4th Steering Committee Meeting of the INTOSAI Knowledge Sharing Committee, Luxembourg, September 2012.
Revision of ISSAI 30 INTOSAI Code of Ethics
WGPD’s Administrative Matters Roberto José Domínguez Moro Superior Audit Office of Mexico INTOSAI Working Group on Public Debt Mexico City, June 15, 2010.
Working Group on Public Debt Progress Report 6th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
5 th meeting of INTOSAI Knowledge Sharing Steering Committee New Delhi, 16 and 17 September 2013 Progress report of INTOSAI Working Group Accountability.
Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.
INTOSAI Working Group on Public Debt Annual Meeting, May, 2013 Santiago, Chile Presented by: Shefali S Andaleeb.
Subcommittee on Peer Review SAI of Slovak Republic Stockholm, Sweden September 2015 Presenter: Igor Šulaj Vice-President 1.
Transregional Capacity Building Programme for Audit of Public Debt Management Meeting of Working Group on Public Debt June 2010 Mexico City.
IDI ISSAI Implementation Initiative – 3i Programme Ines Metsalu Head of Financial Audit Department National Audit Office of Estonia.
IDI - INTOSAI PSC Cooperation Presentation to the 5th PSC Steering Committee meeting in Beijing, October 2008 Mr. Bernt Nordmark.
PSC meeting - Beijing - October The INTOSAI Compliance Audit Guidelines Presentation of Exposure Drafts ISSAIs 4000, 4100 and 4200.
Performance Audit Subcommittee PSC-SC meeting – Manama standards/performance-audit-subcommittee.html.
3i Programme First Phase ( ) ISSAI Implementation Initiative 1.
Working Group on Public Debt Progress Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
Performance Audit Subcommittee - PAS PSC meeting Mexico City, November 4, 2007.
WGPD’s Administrative Matters Roberto José Domínguez Moro Superior Audit Office of Mexico INTOSAI Working Group on Public Debt Mexico City, June 14-15,
INTOSAI WGEA Secretariat 7 th KSC Meeting, Washington D.C., 15 October 2015 Progress Report INTOSAI Working Group on Environmental Auditing.
Updating ISSAI Project Proposal SAI India Comptroller and Auditor General of India1.
Agenda Item No. 12 Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.
Investigation Themes Status | WGPD WGPD Secretariat Annual Meeting of the Working Group on Public Debt October 22-24, 2014 Seoul, Korea.
Background The Sustainable Development Goals (SDGs), which the UN Members States jointly committed to in September 2015, provide an ambitious and long-term.
ISSAI Implementation Initiative – 3i Programme Update on Phase I and Phase II PSC Steering Committee Meeting May 2016,Copenhagen.
INTOSAI WGEA Secretariat 8 th KSC Meeting Mexico City, September 7, 2016 Progress Report INTOSAI Working Group on Environmental Auditing.
ISSAI IMPLEMENTATION INITIATIVE
Comptroller and Auditor General of India
14th Compliance Audit Subcommittee Meeting
AFROSAI WGEA PROGRESS REPORT
IMPLEMENTATION OF ISSAI 4000
Auditing Sustainable Development Goals
INTOSAI Working Group on Environmental Auditing The 5th Seminar on Environmental Auditing and 4th Working Meeting of ASOSAI WGEA Hanoi, 15 April 2014.
Audit Guideline on Delivering the 2030 Agenda through Environmental Audit WGEA’s Work Plan Goal 1 - Developing guidance materials available.
Secretariat Matters INTOSAI Working Group on Environmental Auditing
Mexico 8th Meeting of the Steering Committee of INTOSAI Committee on
INTOSAI WGEA – Steering Committee Meeting Morocco, March 2011
INTOSAI Financial Audit Guidelines Subcommittee
9th KSC meeting Bali, 23rd August 2017
THE WGEA WORKPLAN INTOSAI WGEA Secretariat
Comptroller and Auditor General of India
Regional Forum for Capacity Development Graz, Austria, 5 November 2017
Progress Report on proposed GUID on Information System Security Audit
Progress Report INTOSAI Working Group on Environmental Auditing
Performance Audit Subcommittee Project for ISSAI Level 4 review 66th INTOSAI Governing Board Meeting Vienna, November 5-7, 2014.
Documentation Requirements of an IT Audit including Audit Management System (Area: Audit Process) A presentation by SAIs AFROSAI-E, Bangladesh, China,
Support for strengthening Quality Assurance
THE WGEA WORKPLAN INTOSAI WGEA Secretariat
ISSAI IMPLEMENTATION INITIATIVE
Comptroller and Auditor General of India
Presentation by SAI Pakistan
17 April 2018 Progress report ccc General capacity requirements for SAIs for conducting IT audits.
CAS Meeting, September 2014, Oslo
Mexico 8th Meeting of the Steering Committee of INTOSAI Committee on
Reporting Dashboard of WGITA
What is IT audit? An examination of how IT systems where implemented to ensure that they meet the organization’s business needs without compromising.
Progress Report on proposed GUID on Information TECHNOLOGY Audit
Working Group on IT Audit
Progress Report GUID on Information System Security Audit
Performance Audit ISSAIs and Auditing SDGs
WGITA/IDI IT Handbook Update
IDI-CAS collaboration for supporting ISSAI implementation
Presentation by SAI Pakistan
Progress Report GUID on Information Systems Audit
IDI-CAS collaboration for supporting ISSAI implementation
Presentation transcript:

25th Meeting of the INTOSAI Working Group on IT Audit Brasilia, Brazil, April 25 – 26, 2016 Madhav Panwar - US, GAO Report on WGITA IDI Handbook on IT Audit

Outline  WGITA IDI Handbook on IT Audit  Handbook Dissemination, Adoption  WGITA IDI Cooperation on Pilot Audits E-learning Audit Planning Audit Reporting  Handbook Update Schedule  Questions 2

WGITA IDI Handbook on IT Audit Handbook endorsed by the XXI INCOSAI, Beijing, Oct 2013 Published February, 2014 Created & Reviewed by WGITA & IDI 3

WGITA IDI Handbook on IT Audit  Development Process ( Jan-July 2013) Project team consisting of WGITA and IDI members  SAI Brazil  SAI Indonesia  SAI India  SAI Poland  SAI USA, and  The IDI Review of the guidelines framework and courseware developed for the pilot programme in AFROSAI-E 4

WGITA IDI Handbook on IT Audit  Coverage of the Handbook IT Audit Methodology (selected for update) General Computer Controls IT Governance and Policy IS Security Development and Acquisition IT Operations Outsourcing Back up and Disaster Recovery Plans 5

WGITA IDI Handbook on IT Audit  Coverage of the Handbook Segregation of duties Access controls Application Controls Additional topics of interest  Websites and E-portals  Mobile computing  Computer forensics  E-Governance  E-Commerce  Internet 6

WGITA IDI Handbook on IT Audit  General Handbook Structure  Definition and explanation of key IT audit issues Key Elements IT risks and key audit questions Conclusion References Audit matrix, sample questions, criteria, info request, etc. 7

WGITA IDI Handbook on IT Audit Details Chapter 1- Audit Matrix Introduction Identifying sources of information, techniques, tools for gathering data 8

WGITA IDI Handbook on IT Audit Details Chapter 4 - IT Operations Key Elements, Service, Capacity, Incident Management 9

WGITA IDI Handbook on IT Audit Details Chapter 4 - IT Operations Change Mangement, SLAs All chapters on IT Areas end with Risks To The Audited Entity (can be design matrix shefali- now incorporated in the proposal for update ) 10

WGITA IDI Handbook on IT Audit Details Appendix IV - Suggested Matrix For The Audit Of IT Operations 11

WGITA IDI Handbook on IT Audit Details Appendix IV - Audit Matrix 12

Dissemination WGITA Web Portal Translations into other INTOSAI Languages Albanian, Arabic, Korean, Russian, Spanish 13

Adoption May - August, 2014, IDI hosted an E-Learning course on the IT Audit Handbook 117 participants from 41 countries participated 113 passed and moved on to the next phase, pilot audits In all 39 countries participating in pilot audits, using the WGITA-IDI Handbook. 39 countries divided in 2 groups: Group 1 - ASOSAI, PASAI Group 2 - AFROSAI-E, EUROSAI, CAROSAI 14

Meetings - Planning Group 1 & 2 met in October & December 2014 with the SMEs in New Delhi & Warsaw to finalize Audit Plans & Matrices respectively All participants had to choose and area of IT Audit at a specific ministry, agency, government organization in their country 15

Meetings - Reporting Second set of meetings took place for each group in 2015 in Malaysia & Hungary All participants brought their draft audit reports and the SMEs reviewed and provided comments on message development, reporting structure, findings, sufficiency of coverage, etc. 16

Meetings - Reporting Second set of meetings took place for each group in 2015 in Malaysia & Hungary All participants brought their draft audit reports and the SMEs reviewed and provided comments on message development, reporting structure, findings, sufficiency of coverage, etc. SMEs assisted with report writing, findings, recommendations 17

Proposal For Handbook Updates Project Lead, US GAO Update every three years Next update 2017 Part A Review chapters based on feedback from IDI-WGITA Courses Part B Begin formulating areas for update Form team, research & create content (new chapters as needed) Maintain cross links with ISSAI 5300 Create draft by late 2016, circulate for review Present to WGITA at 2017 meeting 18

Proposal For Handbook Updates Areas for Update Way Forward Proposals 19

Chapter 1 : Audit Process Functional Area Matrices  Cloud Computing  E-governance and web services  Open data audit  Land Registry  Financial Management IT System Areas For Update

Chapter 1 : Audit Process § Updates required:  IT Audit Process: Clarification on audit methodology and type of audit  Mapping with ISSAI 5300 and other existing ISSAI on audit process and reporting  Functional Area Matrices Areas for Update

Functional Area Matrices Areas For Update (Continued) Matrix Initial drafts developed by Cloud ComputingBrazil E-governance and web services Indonesia Open data auditBrazil Land RegistryUSA Financial Management IT System Poland

Way Forward Work that needs to be done Chapter 1 To be fleshed out Inputs from IDI needed Map to ISSAIs Functional Area Matrices Harmonization and consistency

Way Forward TIMELINES § First draft Late 2016 § Circulation to members Early 2017 § Incorporation of comments and finalisation of Series 1 Mar-Apr 2017 § Presetation to WGITA 2017 Meeting

Questions 25

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.