The need for timely and ongoing assurance over the effectiveness of risk management and control systems is critical. Organizations are continually exposed to significant errors,
frauds or inefficiencies that can lead to financial loss and increased levels of risk. An evolving regulatory environment, increased globalization of businesses, market pressure to
improve operations, and rapidly changing business conditions [...]

1.1 Why the CAE Must Be Involved in Controlling Change and Patch Management You may be wondering why you should read a guide on the subject of information technology (IT) change and patch management. After all, isn’t this something you can completely delegate to your technical IT audit staff? And isn’t there sufficiently thorough guidance [...]

GTAG Information Technology Controls describes the knowledge needed by members of governing bodies, executives, IT professionals, and internal auditors to address technology control issues and their impact on business. Other professionals may find the guidance useful and relevant. The guide provides information on available frameworks for assessing IT controls and describes how to establish [...]