Use of information technologies in internal audit

Abstract

The article reveals the essence and importance of internal audit in adding value to the organization and its stakeholders by assessing and providing recommendations for improving corporate governance, risk management and control, promoting economic efficiency, sustainable growth and financial stability. The main current trends in the development of internal audit on the use of modern technologies in auditing and the growing need for internal auditors to acquire knowledge and skills of IT technologies, work with big data, knowledge in the field of cybersecurity, analytical and critical thinking skills. Using the provisions of the International Standards for the Professional Practice of Internal Auditing, the functions of internal audit to assess the adequacy and effectiveness of controls in accordance with the risks in the field of information systems of the organization. It is emphasized that internal auditors must have sufficient knowledge of the key risks and controls of information technology, as well as technological audit methods, and some of them must have the competence of the auditor, whose main responsibility is the audit of information technology. The essence, evolution of the development of the concept of information technology audit, as well as its application in the management system of the business entity, are revealed. The classification of functional types of IT audits is covered, in particular: information security audit; IT quality audit; IT project audit; systems development audit; data analysis as part of the financial audit; audit of control measures; judicial audit. It is indicated that IT audit is a separate type of audit at the enterprise, and can also be part of the financial audit process. The advantages of using computer tools and technologies in the audit, which improves internal audit processes, as well as the need and prospects for the development of computerization in the audit, are considered.