Presentation is loading. Please wait.

Presentation is loading. Please wait.

Progress Report on proposed GUID on Information System Security Audit

Published byEaster Lucas Modified over 6 years ago

Similar presentations

Presentation on theme: "Progress Report on proposed GUID on Information System Security Audit"— Presentation transcript:

1 Progress Report on proposed GUID on Information System Security Audit
A presentation by SAI India for 27th INTOSAI WGITA

2 Introduction - background
Project on drafting GUID on Information System Security Audit - part of SDP “ Consolidating and aligning guidance on IT Audit” Revise ISSAI 5310 as “Guidelines on Information Systems’ Security Audit” Include new section on Cyber Security Recommended numbering for GUID series (reserved for guidance on IT-audit) Development of GUID on Information System Security Audit

3 Introduction - background
Approved Project Duration: to (24 months) in line with approval of GUID by 2019 INCOSAI Members of Project Team Lead: SAI India Members: China, Ecuador, Iraq, Kiribati, Poland, USA, ISACA Development of GUID on Information System Security Audit

4 Development of GUID on Information System Security Audit
Project Objectives Align guidance with ISSAI 100 and revised GUID on IT Audit Identify universe of information systems assets in use by audited entity Identify potential threats and counter measures for mitigation and avoidance of risk exposure to assets Evaluate internal controls already adopted by audited entity Analyse Risk, quantified in terms of risk exposure Issue recommendations, based on computed risk exposure To be bridge between WGITA IDI IT Audit handbook and Standards Development of GUID on Information System Security Audit

5 Proposed Timelines and Progress Achieved
Due process milestones Stage Start Date End Date Expected Time in Total Comments Project proposal 50 Days Proposal and Detailed Outline approved Exposure draft 5 months In progress Exposure period 90 Days  Yet to commence Endorsement version 3 months Final pronouncement Development of GUID on Information System Security Audit

6 FIPP requirements on Project Proposal
Initial Conditional Approval of Project Proposal, subject to providing preliminary structure of GUID Detailed outline considered and approved by FIPP in March meeting FIPP requirements: Not be voluminous Not be too technical and focus more on audit issues of IT Security Stand test of time and not require frequent update STATUS: Directions to be adhered at drafting stage(s) Development of GUID on Information System Security Audit

7 Development of GUID on Information System Security Audit
Current Status Following FIPP’s approval of outline: Finalising Exposure Draft of the GUID is in progress Detailed comments on proposed sections of GUID have been requested from all Team Members by April 30, Development of GUID on Information System Security Audit

8 Proposal before WGITA WGITA members are requested to take note of
Progress Report Project Schedule Detailed Outline (circulated) Suggested that the guidance be named as Guidance on Auditing Security of Information Systems Project Progress Report on development of ISSAI Presentation by SAI India

9 Development of GUID on Information System Security Audit
Thanks… Development of GUID on Information System Security Audit

Download ppt "Progress Report on proposed GUID on Information System Security Audit"

Similar presentations

1 Revision of ISSAI 30 – Code of Ethics Project proposal to the Steering Committee of the INTOSAI Professional Standards Committee Bahrain, 20-22 May 2014.

1 Revision of ISSAI 30 – Code of Ethics Project proposal to the Steering Committee of the INTOSAI Professional Standards Committee Bahrain, May 2014.
Goal 3 Knowledge Sharing & Knowledge Services Update from Knowledge Sharing Committee SAI India 1.

Goal 3 Knowledge Sharing & Knowledge Services Update from Knowledge Sharing Committee SAI India 1.
Report of the Knowledge Sharing Committee (Goal-3) Ms. Indu Agrawal SAI-India Comptroller and Auditor General of India1.

Report of the Knowledge Sharing Committee (Goal-3) Ms. Indu Agrawal SAI-India Comptroller and Auditor General of India1.
The 22 nd meeting of the INTOSAI Working Group on IT Audit (WGITA) KPI Project Final Report — Key Performance Indicators Methodology for Auditing IT Programs.

The 22 nd meeting of the INTOSAI Working Group on IT Audit (WGITA) KPI Project Final Report — Key Performance Indicators Methodology for Auditing IT Programs.
Development of ISSAI 5300 on IT AUDIT

Development of ISSAI 5300 on IT AUDIT
Revision of ISSAI 30 INTOSAI Code of Ethics

Revision of ISSAI 30 INTOSAI Code of Ethics
Working Group on Public Debt Progress Report 6th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.

Working Group on Public Debt Progress Report 6th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
Progress Report to the PSC Steering Committee INTOSAI PSC Subcommittee on Internal Control Standards SAI of Poland (NIK) 22-24 June 2011, Wellington.

Progress Report to the PSC Steering Committee INTOSAI PSC Subcommittee on Internal Control Standards SAI of Poland (NIK) June 2011, Wellington.
INTOSAI Subcommittee on Internal Control Standards – achievements to date Subcommittee meeting, Vilnius, 27-28 May 2014.

INTOSAI Subcommittee on Internal Control Standards – achievements to date Subcommittee meeting, Vilnius, May 2014.
Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.

Progress Report on the activities of the INTOSAI Working Group on IT Audit Chair: SAI India Comptroller and Auditor General of India1.
CBC Steering Committee Chaired by CBC Vice Chair Mr Magnus Lindell 1 INTOSAI CBC Steering Committee Meeting in Stockholm, Sweden.

CBC Steering Committee Chaired by CBC Vice Chair Mr Magnus Lindell 1 INTOSAI CBC Steering Committee Meeting in Stockholm, Sweden.
PSC meeting - Beijing - October 20081 The INTOSAI Compliance Audit Guidelines Presentation of Exposure Drafts ISSAIs 4000, 4100 and 4200.

PSC meeting - Beijing - October The INTOSAI Compliance Audit Guidelines Presentation of Exposure Drafts ISSAIs 4000, 4100 and 4200.
Performance Audit Subcommittee PSC-SC meeting – Manama 2014 standards/performance-audit-subcommittee.html.

Performance Audit Subcommittee PSC-SC meeting – Manama standards/performance-audit-subcommittee.html.
Harmonization Project FAS Meeting 2012. Harmonization project and ISSAI 200 Purpose and scope of the project The purpose is to provide a conceptual basis.

Harmonization Project FAS Meeting Harmonization project and ISSAI 200 Purpose and scope of the project The purpose is to provide a conceptual basis.
Working Group on Public Debt Progress Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.

Working Group on Public Debt Progress Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge Services.
Working Group on the Value and Benefits Chair´s Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge.

Working Group on the Value and Benefits Chair´s Report 7th Meeting of the Steering Committee of the INTOSAI Committee on the Knowledge Sharing and Knowledge.
Due Process – ISSAIs and INTOSAI GOVs Roberto José Domínguez Moro Superior Audit Office of Mexico INTOSAI Working Group on Public Debt June 14, 2010.

Due Process – ISSAIs and INTOSAI GOVs Roberto José Domínguez Moro Superior Audit Office of Mexico INTOSAI Working Group on Public Debt June 14, 2010.
Updating ISSAI 5310 - Project Proposal SAI India Comptroller and Auditor General of India1.

Updating ISSAI Project Proposal SAI India Comptroller and Auditor General of India1.
SAI-India.  The Working Group on IT Audit (WGITA) was created at the XIII INCOSAI in Berlin in 1989.  WGITA is chaired by SAI-India and represented.

SAI-India.  The Working Group on IT Audit (WGITA) was created at the XIII INCOSAI in Berlin in  WGITA is chaired by SAI-India and represented.
PSC INTOSAI Professional Standards Committee Due Process for INTOSAI Professional Standards Revision by 2016.

PSC INTOSAI Professional Standards Committee Due Process for INTOSAI Professional Standards Revision by 2016.

Similar presentations

Ads by Google