Cart 0
Global Technology Audit Guide 7: IT Outsourcing

Global Technology Audit Guide 7: IT Outsourcing

ISBN: 9780894136078
Publisher: The IIA Research Foundation
Publication Date: 2007-03-01
Any used item that originally included an accessory such as an access code, one time use worksheet, cd or dvd, or other one time use accessories may not be guaranteed to be included or valid. By purchasing this item you acknowledge the above statement.

Information technology (IT) outsourcing has grown in popularity as an efficient, cost-effective, and expert solution designed to meet the demands of systems implementation, maintenance, security, and operations. The benefits of IT outsourcing are accompanied with the need to manage the complexities, risks, and challenges that come with it.
It is important that internal auditors understand the outsourcing context and help the organizations with a comprehensive review of its outsourcing operations and evaluation of its compliance with applicable laws and regulations.
Global Technology Audit Guide7: IT Outsourcing provides the chief audit executive (CAE), internal auditors, and management with information on the types of IT outsourcing activities and the IT outsourcing lifecycle. It describes how outsourcing activities should be managed by implementing well-defined plans that are supported by a companywide risk, control, compliance, and governance framework.
Key issues covered in this guide include: How to choose the right IT outsourcing vendor?
What are the best ways to manage outsourcing contract agreements?
What are the main outsourcing risks and how to mitigate them?
What are the key outsourcing control considerations from the standing points of both client operations and service provider operations?
Which is the most effective framework for establishing outsourcing controls?
Each section of this guide provides some key questions that internal auditors should ask during audits of IT outsourcing activities, such as:
Are internal auditors appropriately involved during key stages of the outsourcing lifecycle?
Do internal auditors have sufficient outsourcing knowledge and experience to provide the right input?
Do internal auditors understand the roles and expectations of stakeholders within the context of the organization's outsourcing initiative?
If IT audit plans are outsourced, are created plans based on a complete, top down, and risk-based scope of work?
Are internal auditors able to present outsourcing recommendations in a way that managers understand to facilitate their implementation?
Are internal auditors able to communicate outsourced IT audit findings in a way that is understood and taken seriously by the organization's board of directors?
This document is also available in PDF format.
Prepared by The Institute of Internal Auditors (The IIA), each Global Technology Audit Guide (GTAG) is written in straightforward business language to address a timely issue related to information technology (IT) management, control, and security. The GTAG series serves as a ready resource for chief audit executives on different technology-associated risks and recommended practices.

Customer Reviews

Share this Product

More from this collection