The following information was submitted:
Transactions: WSEAS TRANSACTIONS ON BUSINESS AND ECONOMICS
Transactions ID Number: 88-202
Full Name: Traian Surcel
Position: Professor
Age: ON
Sex: Male
Address: Bucuresti
Country: ROMANIA
Tel:
Tel prefix:
Fax:
E-mail address: tsurcel@ase.ro
Other E-mails:
Title of the Paper: Key Components and Operability Evaluation of Internal Controls for Risk Assessment Modeling in IT Audit
Authors as they appear in the Paper: Cristian Amancei, Traian Surcel
Email addresses of all the authors: cristian.amancei@ie.ase.ro, tsurcel@ase.ro
Number of paper pages: 10
Abstract: The purpose of this paper is to present some directions to improve the implementation methodology of an audit process, from the analysis of tolerance to IT systems unavailability for organizations in a critical situation caused by the materialization of IT vulnerabilities. The article follows a series of key components of IT risk management process, proposing practical elements for risk control, internal controls operability analysis and aggregation of results, providing a deterministic model process. The use of predefined questionnaires and risk matrix can help the services providers to adapt to the market and maintain the service quality. These practical elements can be found in the proposed IT audit questionnaire, along with a workflow process in seven steps for the audit mission.
Keywords: IT systems tolerance, risk areas and subareas, control evaluation, risk assessment, IT risk, IT audit steps, audit questionnaires
EXTENSION of the file: .pdf
Special (Invited) Session: Using Risk Assessment in IT Audit Implementation
Organizer of the Session: 632-149
How Did you learn about congress:
IP ADDRESS: 213.233.93.29