IT audit (information technology audit)

An IT audit is the examination and evaluation of an organization's information technology infrastructure, policies and operations.

Information technology audits determine whether IT controls protect corporate assets, ensure data integrity and are aligned with the business's overall goals. IT auditors examine not only physical security controls, but also overall business and financial controls that involve information technology systems.

Because operations at modern companies are increasingly computerized, IT audits are used to ensure information-related controls and processes are working properly. The primary objectives of an IT audit include:

Download this free guide

Free Guide: How to Evaluate, Select, and Implement Enterprise GRC Software

Learn 7 free GRC tools every compliance professional should know about, and how to evaluate, select and implement enterprise GRC software. Plus, get your hands on a GRC checklist to help you best organize your GRC program.

Start Download

• Corporate E-mail Address:

  You forgot to provide an Email Address.

  This email address doesn’t appear to be valid.

  This email address is already registered. Please login.

  You have exceeded the maximum character limit.

  Please provide a Corporate E-mail Address.

• • I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.

  Please check the box if you want to proceed.

• • I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.

  Please check the box if you want to proceed.

By submitting my Email address I confirm that I have read and accepted the Terms of Use and Declaration of Consent.

• Evaluate the systems and processes in place that secure company data.
• Determine risks to a company's information assets, and help identify methods to minimize those risks.
• Ensure information management processes are in compliance with IT-specific laws, policies and standards.
• Determine inefficiencies in IT systems and associated management.