This document discusses integrating and auditing against multiple IT and security standards, including ISO 27001, PCI DSS, SAS 70, and ISO 20000. It outlines common requirements between the standards, differences in their bases and emphases, challenges of relying on other auditors' work, and pros and cons of an integrated audit approach.