IT audit vs IT security audit

What do generalist IT auditors typically review as opposed to what IT security auditors review. Can you give some examples?
LVL 3
pma111Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
OriNetworksConnect With a Mentor Commented:
IT Auditors generally seek out to find that the it operations are operating in a proper and ethical manner. (e.g. procedures are lined out for compliance and that they are being followed. Verify processes are put in place to actively maintain systems, verify licenses are being tracked.) See http://www.isaca.org/Knowledge-Center/Standards/IT-Audit-and-Assurance/Pages/ObjectivesScopeandAuthorityofITAudit.aspx

IT Security Audits can generally focus on the security aspect and it usually more along the lines of vulnerability to the operations of IT systems. Making sure methods are in place to actively defend infrastructure. (e.g. if software patches are up-to-date or the method in monitoring this practice is relaibale and being followed.)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.