Review Ch. 5, “Internal Controls Concepts Knowledge,” of Auditor’s Guide to IT Auditing.
An organization has implemented the guidance provided by their Certified Information Security Manager (CISM). In the future, you will perform an IT audit on the organization. This organization is rapidly moving away from desktop and laptop solutions into mobile or app-based solutions.
Write and submit 10 audit questions that will help you establish the degree to which the organization is complying with IS objectives as defined by the CISM certification requirements focusing on IS governance. Emphasize areas where the technology change to mobile computing may introduce vulnerabilities to the IT environment.