IT Continuity Review Audit Work Program
Subscriber Content
Best Practices for Auditing IT Continuity Processes and Policies
This sample audit program includes steps that can be used to audit an organization’s IT continuity process.
This audit addresses risks such as: the business process owners have not communicated IT disaster recovery requirements to ensure that mission-critical systems are recovered in an acceptable time frame; IT does not have a strategy in place to support the business process; and executive management has not defined or is unaware of the overall IT business continuity roles and responsibilities, causing inefficiencies with IT resource allocation during IT disaster recovery efforts as well as unclear expectations of executive management support.