IIA Releases Updated GTAG on IT Governance
Recognizing the integral role and competitive advantage that IT can provide organizations, The IIA has released an updated Global Technology Audit Guide (GTAG), Auditing IT Governance to help internal auditors add value in this space. The update provides a high-level overview of IT governance and highlights important factors in developing a successful IT governance approach including:
- Assessing the degree to which governance activities and standards are consistent with the internal audit activity’s understanding of the organization’s risk appetite.
- Conducting consulting engagements as allowed by the audit charter and approved by the board.
- Fostering an ongoing dialogue with the IT governance activity to ensure that substantial organizational and risk changes are being addressed in a timely manner.
The guide also includes tools and resources to help in the process, such as guidelines for conducting an IT governance engagement, an internal controls questionnaire, and an IT governance risk and control matrix example. IIA members are invited to download guidance as a benefit of membership. Nonmembers may purchase guidance by visiting The IIA Bookstore.