Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 382
  • Last Modified:

IT audit vs IT security audit

What do generalist IT auditors typically review as opposed to what IT security auditors review. Can you give some examples?
0
pma111
Asked:
pma111
1 Solution
 
OriNetworksCommented:
IT Auditors generally seek out to find that the it operations are operating in a proper and ethical manner. (e.g. procedures are lined out for compliance and that they are being followed. Verify processes are put in place to actively maintain systems, verify licenses are being tracked.) See http://www.isaca.org/Knowledge-Center/Standards/IT-Audit-and-Assurance/Pages/ObjectivesScopeandAuthorityofITAudit.aspx

IT Security Audits can generally focus on the security aspect and it usually more along the lines of vulnerability to the operations of IT systems. Making sure methods are in place to actively defend infrastructure. (e.g. if software patches are up-to-date or the method in monitoring this practice is relaibale and being followed.)
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now