Execute your organization’s IT project governance audit with the best-practice steps in this audit program. These steps include verifying that the project management organization has implemented a complete program management toolkit, ensuring that processes are in place to accurately and objectively convey the status of all layers of management, and confirming that project risks are reported to management in a timely manner. The document also provides steps to ensure that controls are incorporated into the applications.

It outlines specific audit steps, from reviewing project documentation and risk management tools to performing gap analyses and reviewing application control requirements. The objective is to ensure that IT projects are designed to meet management's objectives, that project teams follow the processes as designed, and that risks are identified and managed appropriately. This document can be used by auditors, project managers, and IT governance teams to ensure project success and compliance with best practices.

Project work steps include:

• Obtaining and reviewing all change control documentation for the project, including the change request process
• Determining if a change control system to handle changes exists
• Confirming that a process is in place to obtain and document appropriate approvals
• Ensuring that the approval of changes is reported at the appropriate levels