Auditing IT Governance

Effective IT governance helps ensure that IT supports business goals, optimizes business in-vestment in IT, and appropriately manages IT-related risks and opportunities. Organizations that realize the IT is no longer a support process and embeds value and risks need a struc-tured approach for better managing Information Technology, enable its capability to deliver added value enterprise wide and for setting up a risk management program to address new risks arising for usage of IT in business processes. In order to assess if IT Governance is in line with industry practices, IT Auditors need a good understanding of processes and appli-cable standards, particular audit work programs and experience in assessing potential prob-lem indicators