IT audit in modern organizations

Abstract

An IT audit is an examination (verification) and assessment of an organization's information technologies, carried out by personnel with adequate professional knowledge - IT auditors. Conducting an IT audit is a structured, defined process that goes through three key phases: 1) planning the audit engagement, 2) conducting the IT audit engagement, and 3) reporting and monitoring the results of the IT audit. IT auditor certification is an important step in confirming the knowledge and skills that an auditor should possess, and the choice between basic and more advanced certificates provides an opportunity for IT auditors at all levels of knowledge to constantly improve themselves. The advantages of an IT audit are multiple, primarily in modern organizations that base their operations on the advanced and mature information system.