This document defines and describes different types of IT audits:
- Financial audits examine a company's financial records and statements to provide assurance they accurately reflect transactions. Operational audits evaluate effectiveness, efficiency and economy of operations. Integrated audits combine elements of different audit types.
- Forensic audits aim to determine if fraud occurred and compile evidence for legal proceedings. Investigative audits investigate suspicious activity in a department or individual. Compliance audits review adherence to regulatory guidelines.
- IS audits evaluate controls over information systems. Audit phases include preparation, performance, reporting, and follow-up.