IT Examiner School - Oct 2023

First page Table of contents Previous page 38 Next page Last page

Internal Use Only

Guidance for IT Audit FFIEC IT Examination Audit Handbook

Federal Agency Rules and Regulations  Interagency Policy Statement on the Internal Audit Function and its Outsourcing  Interagency Policy Statement on External Auditing Program of Banks and Savings Associations  Interagency Guidelines Establishing Information Security Standards (GLBA) Information Systems Audits and Control Association (ISACA)

5

Internal Use Only

IT Audit Engagement

Engaged & signed by an individual or committee not responsible for IT operations (preferably signed by a member of the Board or Audit Committee) The scope, timeframes, and cost of work to be performed

Expectations and responsibilities

Institution access to audit workpapers

6

Made with FlippingBook - professional solution for displaying marketing and sales documents online