This memo outlines the assumptions and decision used to scope the documentation efforts around application security.

This memo documents internal audit's summary of findings from a data governance review.

This work program outlines steps for an AS400 review audit. It identifies major areas to investigate during a general or...

This audit work program focuses on computer operations and IT job scheduling. Audit objectives and test steps help deter...

This audit program outlines steps for reviewing the security of systems running the UNIX operating system.

This audit work program outlines detailed steps to review the controls for an RACF mainframe.

The purpose of this memo is to document management’s approach for the current financial year's Sarbanes-Oxley compliance...

This audit work program outlines steps for executing an IT project governance audit.

This is a sample email sent by the process owner to finance staff regarding the documentation of controls over spreadshe...

This document outlines risks and controls common to the “define IT strategy and organization” process in a risk control ...

This memo documents an organization’s approach to Sarbanes-Oxley Section 404 compliance and concluding results from the ...

This memo defines the process a company uses to update testing of internal controls for Sarbanes-Oxley compliance purpos...