Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
A Global Look at IT Audit Best Practices 
Assessing the International Leaders in an ISACA/Protiviti Survey 
About the Surv...
Upcoming SlideShare
Loading in …5
×

4th Annual IT Audit Benchmarking Survey (with ISACA) - Infograhphic

603 views

Published on

A Global Look at IT Audit Best Practices
Read full report at www.protiviti.com/ITauditsurvey

There is no disputing technology’s role in business today as an enabler of virtually every process and function. With this enablement and the advantages IT brings also come global risks – security, cyberattacks, privacy issues, data breaches, governance, asset management and much more. The critical question we ask is: Are IT audit practices keeping pace in order to assess, monitor and mitigate critical risks coupled to a technology-enabled business? This is what ISACA and Protiviti set out to determine in conducting the fourth annual IT Audit Benchmarking Survey.

Our 5 key findings from this year’s study:

1. Cybersecurity and privacy are primary concerns.

2. Companies face significant IT audit staffing and resource challenges.

3. Audit committees, as well as organizations in general, are becoming more engaged in IT audit.

4. IT audit risk assessments are not being conducted, or updated, frequently enough.

5. Room for growth in IT audit reports and reporting structures

Published in: Technology
  • Be the first to comment

  • Be the first to like this

4th Annual IT Audit Benchmarking Survey (with ISACA) - Infograhphic

  1. 1. A Global Look at IT Audit Best Practices Assessing the International Leaders in an ISACA/Protiviti Survey About the Survey ISACA and Protiviti partnered to conduct the fourth annual IT Audit Benchmarking Survey in the third quarter of 2014. More than 1,300 executives and professionals from around the world completed our online questionnaire. There’s no disputing technology’s role in business as an enabler of virtually every process and function. With this enablement and the advantages IT brings also come global risks – security, cyberattacks, privacy issues, data breaches, governance, asset management and much more. The critical question we ask is: Are IT audit practices keeping pace in order to assess, monitor and mitigate critical risks coupled to a technology-enabled business? TODAY’S TOP TECHNOLOGY CHALLENGES Room for Improvement: IT Audit Risk Assessments Percentage of organizations that conduct an IT audit risk assessment Africa 87% Middle East 89% Asia 83% North America 89% Europe 90% Oceania 88% Latin America 84% For more information, visit isaca.org/2014ITauditstudy and protiviti.com/ITauditsurvey. © 2014 Protiviti Inc. An Equal Opportunity Employer M/F/Disability/Vet. Protiviti is not licensed or registered as a public accounting firm and does not issue opinions on financial statements or offer attestation services. Good News: IT Audit Directors on the Rise Percentage of organizations with a designated IT audit director (or equivalent position) 2014 44% 2013 39% 2012 33% Global Leader: Middle East (50%) Large Organizations: 59% Percentage of organizations in which the IT audit director regularly attends audit committee meetings 2014 54% 2013 42% 2012 27% Global Leader: Africa (82%) Large Organizations: 48 % Quarterly or more frequently Semi-annually or less frequently Africa 30% 70% Asia 30% 70% Europe 27% 73% Latin America 20% 80% Middle East 21% 79% North America 18% 82% Oceania 22% 78% Note: Ideally, organizations should seek to update their IT audit risk assessments on a quarterly basis or more frequently, which leading organizations are doing. 1. IT security and privacy/cybersecurity 2. Resource/staffing/skills challenges 3. Emerging technology and infrastructure changes: transformation, innovation, disruption 4. Regulatory compliance 5. Budgets and controlling costs 6. IT governance and risk management 7. Big data and analytics 8. Vendor, third-party and outsourcing risks 9. Cloud computing/virtualization 10. Bridging IT and the business Frequency with which the IT audit risk assessment is updated*

×