Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Is ZFPAudit all I need to perform a “complete” IT audit?

audit COMPLETE perform zfpaudit
0
Posted

Is ZFPAudit all I need to perform a “complete” IT audit?

0 CommentsAdd a Comment

1 Answer

0

A. No. ZFPAudit provides information and analysis on key aspects of a computer’s configuration. For a complete assessment of IT General Controls, either for a specific system or an entire organization, much more is required. At a minimum, I would also include a remote network vulnerability assessment, and additional interviews, document reviews, and evidence gathering to evaluate other key areas, such as data backup, disaster recovery, business continuation, and many other criteria for evaluating IT practice. ISO standards document ISO-17799, “Information Technology Code of Practice” is a helpful guide on this matter, as is, “Control Objectives for Information and related Technology (CObIT). Information on the latter may be obtained at: www.isaca.org/cobit.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123