• June 15, 2019

(From IIA Global Technology Audit Guide Auditing IT Projects). GTAG 28, 2, Project Plan and Approach, , Objective and scope, The scope of the project. Information for the audit program was also obtained as necessary from the Institute of Internal Auditor’s GTAG (Global Technology Audit Guide) #12 ( Auditing IT. Start studying GTAG Auditing IT Projects: Appendix A – Project Management. Learn vocabulary, terms, and more with flashcards, games, and other study.

Author: Dilkree Tygojinn
Country: Niger
Language: English (Spanish)
Genre: Software
Published (Last): 12 June 2005
Pages: 359
PDF File Size: 6.4 Mb
ePub File Size: 10.6 Mb
ISBN: 992-7-64450-828-2
Downloads: 19403
Price: Free* [*Free Regsitration Required]
Uploader: Fenrizshura

Key project management risks. Chief Information Officer at Starbucks Philippines.

Global Technology Audit Guide (GTAG) 12: Auditing IT Projects

His areas of expertise and focus include helping organizations modernize and embrace digital shift and transformation, including giving advice on the right technology assets and models to consider and implement, redesign of enterprise processes in preparation for technology transformation, software licensing strategy and management, technology governance and risk management, cybersecurity and forensic services, among others.

This Control directly supports the implied Control s: A suggested list of questions for use in the IT project assessment. MakatiMetro ManilaGtzg. He has attended various leadership and technical auditung locally and abroad and has completed the Management Development Program of AIM. Information security risk management and compliance.

Currently, he is working proiects a Risk Management Executive in one of the leading health maintenance organizations HMO in the Philippines handling operational risk, information technology risk, data privacy, information security and consumer protection program. Also, he worked as the head office and information system audit division head in a banking subsidiary of one of the biggest conglomerates in the Philippines.

Typical information security risks. Front page News Browsing. Universal Service Management Body of Knowledge. The difference that Internal Auditors should know about.


The Institute of internal Auditors Philippines, Inc. projcts

Frank Vibar, PMP, CISSP, CISM, CBCP Frank has more than 20 years of solid experience with a proven track record in exercising his leadership, management and technical skills with distinguished performance as he consistently spearheads and delivers projects with utmost business value for the organizations he has worked with. Handling extraordinary security events incidents.

Pg 8, Pg 20, Exam Obj 5. The process of information systems audit. Management of security risk in information and information technology The organization should use Project Management techniques to verify that information technology security requirements are adequately addressed. The groundwork of information system audit.

Establish and maintain project management standards. | Control Result | Unified Compliance

Mission of Internal Audit. He has significant and well-balanced technical and management skills as well as vendor and end-user experience; having worked for top-tier global organizations such as IBM Philippines and Sun Microsystems during the earlier part of his career and with UNILAB United Laboratories Inc.

The auditors should not have direct involvement in the decision process in order to maintain their independence. Whether IT projects are developed in house or are co-sourced with third-party providers, they are filled with challenges that must be considered carefully to ensure success.

Information Technology Controls The business case includes the following key components: Registration for this event is now closed. Please enable scripts and reload this page. The organization shall establish and maintain an operation and management organization… O Auditing IT Projects provides an overview of techniques for effectively engaging with project teams and management to assess the risks related to IT projects.

Information security policy, and strategy. Co-ordinate the activities and … PO He started his career in PwC by performing IT audits ranging from process improvement reviews, information security and compliance readiness, IT governance and enterprise resource planning post-implementation and optimizations. Preparing for the IT audit. Global Perspectives and Insights. The organization shall manage the system development process by establishing efficient development methods, designating personnel to be responsible for the project, and implementing project management.


Information systems audit in the ministries. Continuity of IT services. Establish and maintain a system design project management framework. This will be a diverse group of delegates coming from a wide range of industries. They can serve as a bridge between individual business units and the IT function, point out previously unidentified risks, and recommend controls for enhancing outcomes.

Types of computer related damage, abuse, and fraud. Definition of Internal Auditing.

How the internal audit activity can actively participate in the review of projects while maintaining independence. Plenary 2 – Business Continuity Management.

Add to Calendar

This framework should, among other things, specify the project management methodology to be adopted audifing applied to these projects. Early involvement by internal auditors can help ensure positive results and the accompanying benefits.

Skip to main content. Continuous control monitoring CCM. How data security software works. Ltd starting July This Control has the following implementation support Control s: Computer fraud in the Penal Code Btk. Security requirements during systems development and introduction. She was part of the Core Team of the first company who earned the BCM Certification in the Philippines wherein uaditing were no non conformities cited by the 3rd party assessors.