This sample memo serves as a report of an internal audit function’s high-level assessment of the company’s IT governance function.

In this sample, internal audit evaluated the five domains of IT governance, as defined by the IT Governance Institute (ITGI): strategic alignment, value delivery, risk management, resource management and performance measurement. Memo sections include background, scope and approach, baseline description, interview results, IT governance capability maturity model, and recommendations.