Page 190 - DCOM509_ADVANCED

Page 190 - DCOM509_ADVANCED_AUDITING

P. 190

Unit 10: Government and Independent Financial Audit: Comparison

The following is the high-level approach diagram of information system audits: Notes
Assessment Approach

IT Governance
Governance
Plans, Policies and Procedures

Infrastructure
Management

Business Application/Projects

Improving process maturity using COBIT
COBIT-based maturity model assessment/rating is mandatory components in all major
audit assignments. This necessitates adopting the best practices suggested by COBIT by
the auditees and mandates the need for demonstrating improved maturity on IT-related
processes. In turn, this drives internal programs to identify and improve upon process
maturity on prioritized areas that are supported by the business. The IT governance
assessment has been supported by an internally designed tool for arriving at the scores.
An indicative presentation of overall score and domain scores would be as follows:

Overall Score
2.7
IT Governance Assessment
3
2
1
4 3 0 Plan & Organise
Score (Out of 5.0) 2 1

0
Plan & Acquire & Deliver & Monitor &
Organise Implement Support Evaluate
Domain
Scores 2.7 3.14 2.77 2.13
IT Domain Area
Domain Scores
PO1 Define a strategic Plan
5
PO10 Manage Projects PO2 Define the information architecture
4
3
2
PO9 Assess Risks PO3 Determine technological direction
1
0
PO8 Manage Quality PO4 Determine IT organisation
and relationships

Po7 Manage Human Relationships PO5 Manage the IT investment
PO6 Communicate management
aims and directions
Contd....

LOVELY PROFESSIONAL UNIVERSITY 185

185 186 187 188 189 190 191 192 193 194 195