Design of an Automation Model for Taking Documentary Evidence of Compliance Tests of the IT Audit

2018 Congreso Internacional de Innovación y Tendencias en Ingeniería (CONIITI) Pub Date : 2018-10-01 DOI:10.1109/CONIITI.2018.8587090

Rafael Enrique Rodriguez-Rodriguez, Andrés Felipe Quevedo Vega, A. F. Sánchez, Alexandra López, Jaime Fernando Pérez

{"title":"Design of an Automation Model for Taking Documentary Evidence of Compliance Tests of the IT Audit","authors":"Rafael Enrique Rodriguez-Rodriguez, Andrés Felipe Quevedo Vega, A. F. Sánchez, Alexandra López, Jaime Fernando Pérez","doi":"10.1109/CONIITI.2018.8587090","DOIUrl":null,"url":null,"abstract":"Nowadays IT audit is a priority for large, medium and small companies, for this reason techniques and methodologies have been developed to manage IT audits, in order to avoid the spread of threats and risks within organizations. For the project development, methodologies and good practices were investigated in order to manage IT audits, looking for the most aligned to the collection of evidences as well as the execution of the tests that are done to the controls in the systems of information, the foregoing aims to make a diagnostic selection of the available methodologies for IT audit evidence collecting, as well as identify the characteristics of the applications used in the management of IT audits also called CAAT tools with their functional aspects to categorize their effectiveness against applied methodologies, for the analysis of the results of the methodologies and thus propose a model to automate the collection of documentary evidence in compliance tests in IT audit, based on a methodology.","PeriodicalId":292178,"journal":{"name":"2018 Congreso Internacional de Innovación y Tendencias en Ingeniería (CONIITI)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 Congreso Internacional de Innovación y Tendencias en Ingeniería (CONIITI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CONIITI.2018.8587090","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Nowadays IT audit is a priority for large, medium and small companies, for this reason techniques and methodologies have been developed to manage IT audits, in order to avoid the spread of threats and risks within organizations. For the project development, methodologies and good practices were investigated in order to manage IT audits, looking for the most aligned to the collection of evidences as well as the execution of the tests that are done to the controls in the systems of information, the foregoing aims to make a diagnostic selection of the available methodologies for IT audit evidence collecting, as well as identify the characteristics of the applications used in the management of IT audits also called CAAT tools with their functional aspects to categorize their effectiveness against applied methodologies, for the analysis of the results of the methodologies and thus propose a model to automate the collection of documentary evidence in compliance tests in IT audit, based on a methodology.

查看原文本刊更多论文

获取IT审计合规测试文件证据的自动化模型设计

如今，IT审计是大型、中型和小型公司的优先事项，因此，已经开发了管理IT审计的技术和方法，以避免威胁和风险在组织内的传播。在项目开发方面，为了管理IT审计，对方法和良好做法进行了调查，寻找最符合证据收集的方法以及对信息系统中的控制进行的测试的执行，上述目的是对IT审计证据收集的可用方法进行诊断性选择。以及确定在IT审计管理中使用的应用程序(也称为CAAT工具)的特征及其功能方面，以便根据应用的方法对其有效性进行分类，以分析方法的结果，从而提出一个模型，在基于方法的IT审计合规测试中自动收集文件证据。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 Congreso Internacional de Innovación y Tendencias en Ingeniería (CONIITI)

自引率

0.00%

发文量