Presentation is loading. Please wait.

Presentation is loading. Please wait.

25th Meeting of the INTOSAI Working Group on IT Audit Brasilia, Brazil, April 25 – 26, 2016 Madhav Panwar - US, GAO Report on WGITA IDI Handbook on IT.

Published byKelly Howard Modified over 7 years ago

Similar presentations

Presentation on theme: "25th Meeting of the INTOSAI Working Group on IT Audit Brasilia, Brazil, April 25 – 26, 2016 Madhav Panwar - US, GAO Report on WGITA IDI Handbook on IT."— Presentation transcript:

1 25th Meeting of the INTOSAI Working Group on IT Audit Brasilia, Brazil, April 25 – 26, 2016 Madhav Panwar - US, GAO Report on WGITA IDI Handbook on IT Audit

2 Outline  WGITA IDI Handbook on IT Audit  Handbook Dissemination, Adoption  WGITA IDI Cooperation on Pilot Audits E-learning Audit Planning Audit Reporting  Handbook Update Schedule  Questions 2

3 WGITA IDI Handbook on IT Audit Handbook endorsed by the XXI INCOSAI, Beijing, Oct 2013 Published February, 2014 Created & Reviewed by WGITA & IDI 3

4 WGITA IDI Handbook on IT Audit  Development Process ( Jan-July 2013) Project team consisting of WGITA and IDI members  SAI Brazil  SAI Indonesia  SAI India  SAI Poland  SAI USA, and  The IDI Review of the guidelines framework and courseware developed for the pilot programme in AFROSAI-E 4

5 WGITA IDI Handbook on IT Audit  Coverage of the Handbook IT Audit Methodology (selected for update) General Computer Controls IT Governance and Policy IS Security Development and Acquisition IT Operations Outsourcing Back up and Disaster Recovery Plans 5

6 WGITA IDI Handbook on IT Audit  Coverage of the Handbook Segregation of duties Access controls Application Controls Additional topics of interest  Websites and E-portals  Mobile computing  Computer forensics  E-Governance  E-Commerce  Internet 6

7 WGITA IDI Handbook on IT Audit  General Handbook Structure  Definition and explanation of key IT audit issues Key Elements IT risks and key audit questions Conclusion References Audit matrix, sample questions, criteria, info request, etc. 7

8 WGITA IDI Handbook on IT Audit Details Chapter 1- Audit Matrix Introduction Identifying sources of information, techniques, tools for gathering data 8

9 WGITA IDI Handbook on IT Audit Details Chapter 4 - IT Operations Key Elements, Service, Capacity, Incident Management 9

10 WGITA IDI Handbook on IT Audit Details Chapter 4 - IT Operations Change Mangement, SLAs All chapters on IT Areas end with Risks To The Audited Entity (can be design matrix shefali- now incorporated in the proposal for update ) 10

11 WGITA IDI Handbook on IT Audit Details Appendix IV - Suggested Matrix For The Audit Of IT Operations 11

12 WGITA IDI Handbook on IT Audit Details Appendix IV - Audit Matrix 12

13 Dissemination WGITA Web Portal Translations into other INTOSAI Languages Albanian, Arabic, Korean, Russian, Spanish 13

14 Adoption May - August, 2014, IDI hosted an E-Learning course on the IT Audit Handbook 117 participants from 41 countries participated 113 passed and moved on to the next phase, pilot audits In all 39 countries participating in pilot audits, using the WGITA-IDI Handbook. 39 countries divided in 2 groups: Group 1 - ASOSAI, PASAI Group 2 - AFROSAI-E, EUROSAI, CAROSAI 14

15 Meetings - Planning Group 1 & 2 met in October & December 2014 with the SMEs in New Delhi & Warsaw to finalize Audit Plans & Matrices respectively All participants had to choose and area of IT Audit at a specific ministry, agency, government organization in their country 15

16 Meetings - Reporting Second set of meetings took place for each group in 2015 in Malaysia & Hungary All participants brought their draft audit reports and the SMEs reviewed and provided comments on message development, reporting structure, findings, sufficiency of coverage, etc. 16

17 Meetings - Reporting Second set of meetings took place for each group in 2015 in Malaysia & Hungary All participants brought their draft audit reports and the SMEs reviewed and provided comments on message development, reporting structure, findings, sufficiency of coverage, etc. SMEs assisted with report writing, findings, recommendations 17

18 Proposal For Handbook Updates Project Lead, US GAO Update every three years Next update 2017 Part A Review chapters based on feedback from IDI-WGITA Courses Part B Begin formulating areas for update Form team, research & create content (new chapters as needed) Maintain cross links with ISSAI 5300 Create draft by late 2016, circulate for review Present to WGITA at 2017 meeting 18

19 Proposal For Handbook Updates Areas for Update Way Forward Proposals 19

20 Chapter 1 : Audit Process Functional Area Matrices  Cloud Computing  E-governance and web services  Open data audit  Land Registry  Financial Management IT System Areas For Update

21 Chapter 1 : Audit Process § Updates required:  IT Audit Process: Clarification on audit methodology and type of audit  Mapping with ISSAI 5300 and other existing ISSAI on audit process and reporting  Functional Area Matrices Areas for Update

22 Functional Area Matrices Areas For Update (Continued) Matrix Initial drafts developed by Cloud ComputingBrazil E-governance and web services Indonesia Open data auditBrazil Land RegistryUSA Financial Management IT System Poland

23 Way Forward Work that needs to be done Chapter 1 To be fleshed out Inputs from IDI needed Map to ISSAIs Functional Area Matrices Harmonization and consistency

24 Way Forward TIMELINES § First draft Late 2016 § Circulation to members Early 2017 § Incorporation of comments and finalisation of Series 1 Mar-Apr 2017 § Presetation to WGITA 2017 Meeting

25 Questions 25

Download ppt "25th Meeting of the INTOSAI Working Group on IT Audit Brasilia, Brazil, April 25 – 26, 2016 Madhav Panwar - US, GAO Report on WGITA IDI Handbook on IT."

Similar presentations

ISCITA-IDI Cooperation The way ahead Else Karin Kristensen Deputy Director General Pritom Phookun Programme Manager.

ISCITA-IDI Cooperation The way ahead Else Karin Kristensen Deputy Director General Pritom Phookun Programme Manager.
INTOSAI Working Group on Public Debt Chairman’s Report Mr. Roberto Salcedo Aquino Representative of the WGPD’s Chair INTOSAI Working Group on Public Debt.

INTOSAI Working Group on Public Debt Chairman’s Report Mr. Roberto Salcedo Aquino Representative of the WGPD’s Chair INTOSAI Working Group on Public Debt.
Goal 3 Knowledge Sharing & Knowledge Services Update from Knowledge Sharing Committee SAI India 1.

Goal 3 Knowledge Sharing & Knowledge Services Update from Knowledge Sharing Committee SAI India 1.
3i Programme PSC Steering Committee Meeting, 20-22 May 2014, Bahrain.

3i Programme PSC Steering Committee Meeting, May 2014, Bahrain.
Report of the Knowledge Sharing Committee (Goal-3) Ms. Indu Agrawal SAI-India Comptroller and Auditor General of India1.

Report of the Knowledge Sharing Committee (Goal-3) Ms. Indu Agrawal SAI-India Comptroller and Auditor General of India1.
The 22 nd meeting of the INTOSAI Working Group on IT Audit (WGITA) KPI Project Final Report — Key Performance Indicators Methodology for Auditing IT Programs.

The 22 nd meeting of the INTOSAI Working Group on IT Audit (WGITA) KPI Project Final Report — Key Performance Indicators Methodology for Auditing IT Programs.
Development of ISSAI 5300 on IT AUDIT

Development of ISSAI 5300 on IT AUDIT
Report of the INTOSAI Development Initiative 4th Steering Committee Meeting of the INTOSAI Knowledge Sharing Committee, Luxembourg, 25-26 September 2012.

Report of the INTOSAI Development Initiative 4th Steering Committee Meeting of the INTOSAI Knowledge Sharing Committee, Luxembourg, September 2012.
Revision of ISSAI 30 INTOSAI Code of Ethics

Revision of ISSAI 30 INTOSAI Code of Ethics
WGPD’s Administrative Matters Roberto José Domínguez Moro Superior Audit Office of Mexico INTOSAI Working Group on Public Debt Mexico City, June 15, 2010.

WGPD’s Administrative Matters Roberto José Domínguez Moro Superior Audit Office of Mexico INTOSAI Working Group on Public Debt Mexico City, June 15, 2010.
Working Group on Public Debt Progress Report 6th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.

Working Group on Public Debt Progress Report 6th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
5 th meeting of INTOSAI Knowledge Sharing Steering Committee New Delhi, 16 and 17 September 2013 Progress report of INTOSAI Working Group Accountability.

5 th meeting of INTOSAI Knowledge Sharing Steering Committee New Delhi, 16 and 17 September 2013 Progress report of INTOSAI Working Group Accountability.
Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.

Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.
INTOSAI Working Group on Public Debt Annual Meeting, 27-29 May, 2013 Santiago, Chile Presented by: Shefali S Andaleeb.

INTOSAI Working Group on Public Debt Annual Meeting, May, 2013 Santiago, Chile Presented by: Shefali S Andaleeb.
Subcommittee on Peer Review SAI of Slovak Republic Stockholm, Sweden September 2015 Presenter: Igor Šulaj Vice-President 1.

Subcommittee on Peer Review SAI of Slovak Republic Stockholm, Sweden September 2015 Presenter: Igor Šulaj Vice-President 1.
Transregional Capacity Building Programme for Audit of Public Debt Management Meeting of Working Group on Public Debt 14-15 June 2010 Mexico City.

Transregional Capacity Building Programme for Audit of Public Debt Management Meeting of Working Group on Public Debt June 2010 Mexico City.
IDI ISSAI Implementation Initiative – 3i Programme Ines Metsalu Head of Financial Audit Department National Audit Office of Estonia.

IDI ISSAI Implementation Initiative – 3i Programme Ines Metsalu Head of Financial Audit Department National Audit Office of Estonia.
IDI - INTOSAI PSC Cooperation Presentation to the 5th PSC Steering Committee meeting in Beijing, October 2008 Mr. Bernt Nordmark.

IDI - INTOSAI PSC Cooperation Presentation to the 5th PSC Steering Committee meeting in Beijing, October 2008 Mr. Bernt Nordmark.
PSC meeting - Beijing - October 20081 The INTOSAI Compliance Audit Guidelines Presentation of Exposure Drafts ISSAIs 4000, 4100 and 4200.

PSC meeting - Beijing - October The INTOSAI Compliance Audit Guidelines Presentation of Exposure Drafts ISSAIs 4000, 4100 and 4200.
Performance Audit Subcommittee PSC-SC meeting – Manama 2014 standards/performance-audit-subcommittee.html.

Performance Audit Subcommittee PSC-SC meeting – Manama standards/performance-audit-subcommittee.html.

Similar presentations

Ads by Google