GTAG8 - The Institute of Internal Auditors

GTAG 8 GTAG 8 - Auditing Application Controls
Each year, billions of dollars are spent globally on implementing new or upgrading business application systems. Effective application controls will help your organization to ensure the integrity, accuracy, confidentiality and completeness of your data and systems. It is important for the chief audit executive (CAE) and his or her team to develop and execute audits of application controls on a periodic basis in order to determine whether they are designed appropriately and operating effectively. This IIA's new guidance Auditing Application Control provides internal auditors with the following information.

What is application control?
What is the relationship between application control and general controls?
Why rely on application controls?
How to scope a risk-based application control review?
What are the steps to conduct an application controls review?

To further assist CAEs or other individuals who use this guide, we have also included a list of key application controls, a sample audit plan, and a list of some application control review tools.

Authors:
Christine Bellino, Jefferson Wells,
Steve Hunt, Enterprise Controls Consulting LP

Download a free copy of GTAG 8: Auditing Application Controls (PDF, 2MB)
Purchase a printed version
Download GTAG 8 PowerPoint Slides (PPT, 240KB)

Training in relation to this GTAG
The IIA also offers training either on site at your location or as part of our seminars program. To find out more, go to Introduction to IT Auditing (IIA/Deloitte).

Quick Search Advanced Search Site Map IIA Popular Pages CIA Exam Content CFSA Individual Memberships Code of Ethics Information Technology		Home / Professional Guidance / Information Technology / GTAG / GTAG8 GTAG 8 - Auditing Application Controls Each year, billions of dollars are spent globally on implementing new or upgrading business application systems. Effective application controls will help your organization to ensure the integrity, accuracy, confidentiality and completeness of your data and systems. It is important for the chief audit executive (CAE) and his or her team to develop and execute audits of application controls on a periodic basis in order to determine whether they are designed appropriately and operating effectively. This IIA's new guidance Auditing Application Control provides internal auditors with the following information. What is application control? What is the relationship between application control and general controls? Why rely on application controls? How to scope a risk-based application control review? What are the steps to conduct an application controls review? To further assist CAEs or other individuals who use this guide, we have also included a list of key application controls, a sample audit plan, and a list of some application control review tools. Authors: Christine Bellino, Jefferson Wells, Steve Hunt, Enterprise Controls Consulting LP Download a free copy of GTAG 8: Auditing Application Controls (PDF, 2MB) Purchase a printed version Download GTAG 8 PowerPoint Slides (PPT, 240KB) Training in relation to this GTAG The IIA also offers training either on site at your location or as part of our seminars program. To find out more, go to Introduction to IT Auditing (IIA/Deloitte).		Global Technology Audit Guides (GTAG^®) Guide 1 Guide 2 Guide 3 Guide 4 Guide 5 Guide 6 Guide 7 Guide 8 Guide 9 IT Resources Review some of the latest IT Resources available for IT auditing. GAIT Project Learn more about the ongoing IT auditing guidance project known as the Guide to the Assessment of ITGeneral Controls Scope Based on Risk (GAIT). Information Technology