Progress Report on proposed GUID on Information System Security Audit

Slides:



Advertisements
Similar presentations
1 Revision of ISSAI 30 – Code of Ethics Project proposal to the Steering Committee of the INTOSAI Professional Standards Committee Bahrain, May 2014.
Advertisements

Goal 3 Knowledge Sharing & Knowledge Services Update from Knowledge Sharing Committee SAI India 1.
Report of the Knowledge Sharing Committee (Goal-3) Ms. Indu Agrawal SAI-India Comptroller and Auditor General of India1.
The 22 nd meeting of the INTOSAI Working Group on IT Audit (WGITA) KPI Project Final Report — Key Performance Indicators Methodology for Auditing IT Programs.
Development of ISSAI 5300 on IT AUDIT
Revision of ISSAI 30 INTOSAI Code of Ethics
Working Group on Public Debt Progress Report 6th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
Progress Report to the PSC Steering Committee INTOSAI PSC Subcommittee on Internal Control Standards SAI of Poland (NIK) June 2011, Wellington.
INTOSAI Subcommittee on Internal Control Standards – achievements to date Subcommittee meeting, Vilnius, May 2014.
Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.
CBC Steering Committee Chaired by CBC Vice Chair Mr Magnus Lindell 1 INTOSAI CBC Steering Committee Meeting in Stockholm, Sweden.
PSC meeting - Beijing - October The INTOSAI Compliance Audit Guidelines Presentation of Exposure Drafts ISSAIs 4000, 4100 and 4200.
Performance Audit Subcommittee PSC-SC meeting – Manama standards/performance-audit-subcommittee.html.
Harmonization Project FAS Meeting Harmonization project and ISSAI 200 Purpose and scope of the project The purpose is to provide a conceptual basis.
Working Group on Public Debt Progress Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
Working Group on the Value and Benefits Chair´s Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge.
Due Process – ISSAIs and INTOSAI GOVs Roberto José Domínguez Moro Superior Audit Office of Mexico INTOSAI Working Group on Public Debt June 14, 2010.
Updating ISSAI Project Proposal SAI India Comptroller and Auditor General of India1.
SAI-India.  The Working Group on IT Audit (WGITA) was created at the XIII INCOSAI in Berlin in  WGITA is chaired by SAI-India and represented.
PSC INTOSAI Professional Standards Committee Due Process for INTOSAI Professional Standards Revision by 2016.
Introducing the ISSAIs and INTOSAI GOVs 1 PSC The Professional Standards Committee.
Agenda Item No. 12 Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.
Mr. Roberto José Domínguez Moro Superior Audit Office Mexico Updates in the Public Debt Working Group’s Website PDGW’s Annual Meeting Nadi, Fiji Island.
Progress report of the Working Group on the Value and Benefits of SAIs (WGVBS) 5 th meeting of the INTOSAI KSC Steering Committee 16 September 2013.
Strategic Objectives for Goal 1 Draft Strategic Plan for INTOSAI 2017 – 2022 Provide a strong organizational framework to support INTOSAI’s standard- setting.
Presentation to the PSC Steering Committee, May 2016, Copenhagen The proposed INTOSAI Framework of Professional Pronouncements (IFPP) Forum for the INTOSAI.
25th Meeting of the INTOSAI Working Group on IT Audit Brasilia, Brazil, April 25 – 26, 2016 Madhav Panwar - US, GAO Report on WGITA IDI Handbook on IT.
Comptroller and Auditor General of India
Strategic Development Plan (for INTOSAI professional pronouncements)
7th KSC Steering Committee Meeting
Agenda Item #2 CHAIR´S REPORT September 6, 2017.
Sources for formulation of Work Plan
CAS Annual Meeting New Delhi 20th February 2017.
June 2009 Intosai PSC Steering Committee
Developments in Standards of GRAP 12 July 2016
Mexico 8th Meeting of the Steering Committee of INTOSAI Committee on
INTOSAI Financial Audit Guidelines Subcommittee
WORKING GROUP ON PUBLIC DEBT
Compliance Performance Measure Proposals and Preliminary Trends
Alignment of WGEA’s documents into IFPP
WGITA Work Plan NOTE: To change the image on this slide, select the picture and delete it. Then click the Pictures icon in the placeholder to.
Comptroller and Auditor General of India
of the Russian Federation
WSC Market Report Task Force Meeting
Alan Findlay – PSC secretariat / European Court of Auditors
Key Performance Indicators and Risk Register
Performance Audit Subcommittee Project for ISSAI Level 4 review 66th INTOSAI Governing Board Meeting Vienna, November 5-7, 2014.
Documentation Requirements of an IT Audit including Audit Management System (Area: Audit Process) A presentation by SAIs AFROSAI-E, Bangladesh, China,
9th Meeting of KSC Steering Committee
Comptroller and Auditor General of India
Presentation by SAI Pakistan
17 April 2018 Progress report ccc General capacity requirements for SAIs for conducting IT audits.
Mexico 8th Meeting of the Steering Committee of INTOSAI Committee on
Due Process for INTOSAI Professional Standards
Reporting Dashboard of WGITA
INTOSAI Strategic Plan & Role of KSC
What is IT audit? An examination of how IT systems where implemented to ensure that they meet the organization’s business needs without compromising.
Progress Report on proposed GUID on Information TECHNOLOGY Audit
Changes in INTOSAI Standard Setting Process.
Working Group on IT Audit
Documentation Requirements of an IT Audit including Audit Management System (Area: Audit Process) A presentation by the SAIs of AFROSAI-E, Bangladesh,
INTOSAI WORKING GROUP ON KEY NATIONAL INDICATORS
Progress Report GUID on Information System Security Audit
The Next Strategic Development Plan for IFPP
WGITA/IDI IT Handbook Update
Documentation Requirements of an IT Audit including Audit Management System (Area: Audit Process) A presentation by SAIs AFROSAI-E, Bangladesh, China,
Presentation by SAI Pakistan
Compliance Audit Subcommittee
Progress Report GUID on Information Systems Audit
3. Status of SDP implementation
Presentation transcript:

Progress Report on proposed GUID on Information System Security Audit A presentation by SAI India for 27th INTOSAI WGITA

Introduction - background Project on drafting GUID on Information System Security Audit - part of SDP “2.8 - Consolidating and aligning guidance on IT Audit” Revise ISSAI 5310 as “Guidelines on Information Systems’ Security Audit” Include new section on Cyber Security Recommended numbering for GUID 5100 - 5109 series (reserved for guidance on IT-audit) Development of GUID on Information System Security Audit

Introduction - background Approved Project Duration: 22.06.2017 to 30.06.2019 (24 months) in line with approval of GUID by 2019 INCOSAI Members of Project Team Lead: SAI India Members: China, Ecuador, Iraq, Kiribati, Poland, USA, ISACA Development of GUID on Information System Security Audit

Development of GUID on Information System Security Audit Project Objectives Align guidance with ISSAI 100 and revised GUID on IT Audit Identify universe of information systems assets in use by audited entity Identify potential threats and counter measures for mitigation and avoidance of risk exposure to assets Evaluate internal controls already adopted by audited entity Analyse Risk, quantified in terms of risk exposure Issue recommendations, based on computed risk exposure To be bridge between WGITA IDI IT Audit handbook and Standards Development of GUID on Information System Security Audit

Proposed Timelines and Progress Achieved Due process milestones Stage Start Date End Date Expected Time in Total Comments Project proposal 10.10.2017 30.11.2017 50 Days Proposal and Detailed Outline approved Exposure draft 01.03.2018 31.07.2018 5 months In progress Exposure period 01.11.2018 31.01.2019 90 Days  Yet to commence Endorsement version 01.02.2019 30.04.2019 3 months Final pronouncement 30.06.2019 Development of GUID on Information System Security Audit

FIPP requirements on Project Proposal Initial Conditional Approval of Project Proposal, subject to providing preliminary structure of GUID Detailed outline considered and approved by FIPP in March 2018 meeting FIPP requirements: Not be voluminous Not be too technical and focus more on audit issues of IT Security Stand test of time and not require frequent update STATUS: Directions to be adhered at drafting stage(s) Development of GUID on Information System Security Audit

Development of GUID on Information System Security Audit Current Status Following FIPP’s approval of outline: Finalising Exposure Draft of the GUID is in progress Detailed comments on proposed sections of GUID have been requested from all Team Members by April 30, 2018 Development of GUID on Information System Security Audit

Proposal before WGITA WGITA members are requested to take note of Progress Report Project Schedule Detailed Outline (circulated) Suggested that the guidance be named as Guidance on Auditing Security of Information Systems Project Progress Report on development of ISSAI 5300 - Presentation by SAI India

Development of GUID on Information System Security Audit Thanks… Development of GUID on Information System Security Audit

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.