Information Technology Audit Guidance and Resources

IIA Technology Audit Research and Development News

IIA releases New Practice Guide
PG GTAG-12: Auditing IT Projects
Auditing IT Projects provides an overview of techniques for effectively engaging with project teams and management to assess the risks related to IT projects. Insufficient attention to the challenges inherent in any project can result in wasted money and resources, loss of trust, and reputation damage. Early involvement by internal auditors can help ensure positive results and the accompanying benefits. They can serve as a bridge between individual business units and the IT function, point out previously unidentified risks, and recommend controls for enhancing outcomes.

The IIA's practice guide series: GTAG and GAIT
Global Technology Audit Guide (GTAG) series
The GTAG series was created to provide high-level technology information from a business point of view that can help internal auditors worldwide better understand the different risks, controls, and governance issues surrounding technology. Along with the GAIT guides, GTAGs are officially recognized as "strongly recommended guidance" under the International Professional Practices Framework (IPPF).

Guide to the Assessment of IT Risk (GAIT) series
The GAIT series describes the relationships among risk to the financial statements, key controls within business processes, automated controls and other critical IT functionality, and key controls within IT general controls (ITGC). Each practice guide in the series addresses a specific aspect of IT risk and control assessments.

What is The IIA Doing Regarding Technology? presentation (PDF, 500KB).
Get a brief overview of The IIA's Advanced Technology Committee and the guidance it oversees.

Explore the links in the right-hand column for more technology-related guidance.