Scribd Logo
Upload

Welcome to Scribd!

  • 8 views

    Introduction To IT-Based Internal Audit Themes in 2025

    Uploaded by

    urobot27

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd

    Introduction To IT-Based Internal Audit Themes in 2025

    Uploaded by

    urobot27
    8 views8 pages

    Original Title

    Introduction to IT-Based Internal Audit Themes in 2025

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    8 views8 pages

    Introduction To IT-Based Internal Audit Themes in 2025

    Uploaded by

    urobot27

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    of 8

    Top 5 Key IT Thematic

    Areas for Internal


    Audit in 2025
    As technology evolves, so does the role of internal
    audit. Explore the top five IT-based thematic areas
    that will shape internal audits in 2025!

    Towshin Sharier, CISA


    @towshinst
    01
    Cybersecurity Resilience
    In an era of increasing cyber threats, internal auditors
    must assess cybersecurity frameworks rigorously.
    Are your security protocols robust enough to
    withstand evolving threats? Engage with IT to ensure
    your organization is prepared!

    Start with a .
    key and engage with IT to
    necessary . Consider using frameworks like
    or for guidance.

    Towshin Sharier, CISA


    @towshinst
    02
    Cloud Governance and
    Compliance
    With the shift to cloud services, understanding
    governance and compliance in the cloud is critical.
    How do you evaluate your cloud vendors? Regular
    audits of cloud practices can mitigate risks. Are you
    prepared to assess cloud environments?

    Begin by reviewing existing


    and with . Create a
    based on best practices for cloud governance (e.g.,
    CSA Cloud Controls Matrix) and conduct
    .

    Towshin Sharier, CISA


    @towshinst
    03
    Data Privacy and Protection
    Data breaches are costly. As regulations like GDPR
    and CCPA tighten, internal audit must ensure
    compliance with data privacy laws. Are your data
    protection policies up-to-date? Regular assessments
    can help safeguard sensitive information.

    Perform a to understand data


    flow and storage. Establish a
    for and ensure staff are
    and compliance
    requirements.

    Towshin Sharier, CISA


    @towshinst
    04
    IT Service Management
    (ITSM)
    The effectiveness of IT service management directly
    impacts business operations. How well are IT
    services being delivered? Consider integrating ITSM
    frameworks into your audit to evaluate service quality
    and efficiency. Are you tracking IT service
    performance?

    Initiate a processes using


    frameworks like . Identify key performance
    indicators ( ) to measure service delivery and
    conduct to evaluate compliance with
    these KPIs.

    Towshin Sharier, CISA


    @towshinst
    05
    Artificial Intelligence and
    Automation in Auditing
    AI and automation are revolutionizing internal audit
    processes. Are you leveraging technology to improve
    efficiency? Explore AI-driven tools for data analysis
    and reporting to enhance audit accuracy and insights.

    Start by identifying
    process that can be . Research available
    and pilot a project to integrate them into your
    workflow, focusing on and
    functionalities.

    Towshin Sharier, CISA


    @towshinst
    At a Glance Key Focus
    Thematic Area Action Steps Tools/Frameworks
    Areas
    Conduct a cybersecurity NIST Cybersecurity
    Risk Assessment
    risk assessment. Framework
    1. Cybersecurity Control Identify and implement
    ISO 27001
    Resilience Implementation necessary controls.
    Continuous Establish a continuous
    SIEM tools
    Monitoring monitoring process.
    Review cloud service CSA Cloud Controls
    Contract Review
    agreements for compliance. Matrix
    2. Cloud
    Conduct regular vendor Cloud security
    Governance and Vendor Audits
    audits for compliance. frameworks
    Compliance
    Governance Establish cloud governance
    ISO 27017
    Policies policies.
    Perform a data mapping
    Data Mapping Data flow mapping tools
    exercise.
    3. Data Privacy and Regularly review data GDPR compliance
    Policy Review
    Protection protection policies. checklist
    Train staff on privacy
    Staff Training Online training modules
    policies.
    Review current ITSM
    Process Review ITIL Framework
    processes.
    4. IT Service Identify key performance
    Management KPI Development KPI dashboards
    indicators (KPIs).
    (ITSM)
    Compliance Conduct regular ITSM
    Service delivery metrics
    Audits compliance audits.
    Identify repetitive tasks for Robotic Process
    Task Automation
    5. Artificial automation. Automation (RPA) tools
    Intelligence and Pilot AI tools for data
    Automation in Pilot AI Tools Data analytics platforms
    analysis.
    Auditing Training and Upskill staff on AI and
    Online courses
    Upskilling automation.

    Towshin Sharier, CISA


    @towshinst
    Share and Follow for
    more
    IT is reshaping the audit landscape. Are you ready to
    adapt? Embrace these thematic areas to enhance
    your internal audit function and drive value for your
    organization.

    Which IT-based thematic area will you prioritize in


    2025? Share your insights below! Let’s collaborate on
    advancing internal audit practices in our organizations!

    Towshin Sharier, CISA


    @towshinst

    You might also like