Skip to Content
Press Enter

Recommended Guidance

GTAG: Auditing IT Governance and IT Management, 3rd Edition

August 12, 2025

Copyright Notice All content is protected by international copyright laws. You may reference or quote small portions of this document with proper attribution to The IIA, but unauthorized reproduction, distribution, or use beyond that, other than for your own personal use, is strictly prohibited and may constitute a violation of copyright law, resulting in civil and criminal penalties. Contact copyright@theiia.org for permission to use our materials.
gtag-auditing-it-governance.png

As organizations grow more reliant on technology, effective IT governance and management are critical to ensuring systems support strategic goals and operate securely and efficiently. Insufficient IT oversight can lead to control failures and operational risk.

This guide helps internal auditors identify gaps, evaluate alignment with organizational objectives, and provide recommendations to bolster IT oversight and resilience.

The guidance replaces “GTAG: Auditing IT Governance” published in 2018 and “Management of IT Auditing” published in 2013.

The IIA

The Institute of Internal Auditors

Guidance

GTAG: Auditing Computing Infrastructure and IT Operations

Guidance

Global Practice Guide: Coordination and Reliance: Working with Other Assurance Providers

Guidance

Auditing Capital Adequacy and Stress Testing for Banks

Global Technology Audit Guides

GTAG: Auditing Cybersecurity Operations: Prevention and Detection, 2nd Edition

Learn about IIA programs and partners.

We are continually searching for innovative products and services to enhance our members' ability to meet their rising stakeholder demands.