As the season of gratitude unfolds, let’s take a moment to express thanks for the often unsung heroes of the corporate realm – the IT auditors. In a world that thrives on bits and bytes, their role is crucial, and this Thanksgiving, we highlight the things that IT auditors have to be thankful for:
Tag Archives: it auditor
CISA Does NOT an IT Auditor Make
Passing the CISA exam does not make you a good IT auditor anymore than passing a driving test makes you a good driver.
Passing either exam says that you know the basics, but you still have a lot to learn.
Most likely, you still don’t know how and when to use what you know and apply it to the current situation. That’s why experience is necessary. Lots of it.
I’m going on a rant here, so reader beware. If you read on, make sure you hang in there until I make my main point in the end.
You just won’t feel the love right away…
Filed under Audit, Certification, Employment, How to..., Technology, Written by Skyyler
New IT Auditor (and WannaBEs) Master List
Here’s a list of all my posts to-date related to becoming or growing as an IT Auditor, all in one place for easy reference.
I’ll add other posts as they are written.
Filed under Audit, Employment, How to..., Security, Technology
Audit Management Sometimes Sucks
When internal auditors (or those pretending to be such) do poor work and don’t follow the appropriate audit and IT standards, they are unprofessional. However, I put the blame at the feed of audit management.
Filed under Audit, Employment
How to get an IT Audit job with little or no experience
I get asked all the time, “How do I get a job in IT audit with little or no experience?”
When Michael Onuoha asked me this question (see here), I thought I’d share my response with my readers.
You’ll find these same answers scattered around the blog as I answered people in the past, but I thought I’d pull it all together into one place.
Breaking into any field can be difficult, but it can be done. Especially when the demand for IT auditors is so high.
Filed under Audit, Certification, Employment, How to..., Technology
Some of my Favorites
Since some of you are newer to the blog, I thought I’d bring a couple of my favorite posts to your attention.
How to Describe What an IT Auditor Does?
If you’re an IT auditor, how do you describe your job to those who don’t understand technology or auditing? Even more interesting, how do others describe your activities?
Here’s what I say, but I’m not satisfied with it:
I review computer systems and networks to determine whether they are secure and that access to those systems is limited to the appropriate people.
I review the policies and procedures that describe how those systems are used and determine whether those documents make sense, are up-t0-date, and are followed.
Filed under Audit, Employment, Humor/Irony, Technology
Audit and IT Audit for Dummies
Here’s some links for Audit and IT Audit for dummies, one from the IIA, the other from ISACA. Most of them do not require being a member or logging in.
While these articles are not extensive, they will point new auditors in the right direction, and provide a refresher for the rest of us. Continue reading
ITauditSecurity 