The widespread use of information technology (IT) can introduce various risks that affect financial reporting and the audit process. To assist auditors in identifying and addressing these risks, the ...

It automates evidence collection application-wide, learns from control history and continuously maps user behavior against ...

The Defense Department's fourth annual financial audit highlights ongoing struggles to accurately account for information technology systems and their effectiveness. The DOD's inspector general and ...

Risk mitigation is one thing when you own all the resources, but when you start moving data and applications into the cloud, it’s doubly important to understand what the service provider is doing to ...

A small business's internal control system can only be as strong as the rules, policies and procedures put in place to detect fraud, waste or abuse and protect its financial and physical assets.

The new audit risk standards require the auditor to understand and respond to risks of material misstatement, whether due to errors or fraud. In reaching that understanding, auditors should identify ...

In the early days of computers, many people were suspicious of their ability to replace human beings performing complex tasks. The first business software applications were mostly in the domain of ...

IT governance, risk and compliance (GRC) tools help bring order to enterprises' crazy quilt of overlapping regulations, redundant audit programs and manual processes As enterprises approach a high ...