Audit Information systems & IT Security
Audit Information systems & IT Security
Menu

: Home

: Terminology

: Best Practice
: : COBIT
: : ISO 27002 (ISO 17799)
: : ISO 27001
: : ISO 27000 Series
: : ISO 20000 - ITIL
: : COSO
: : Info Security Policy
: : Security Domains

: SOX

: Links
: : Organisations
: : Standards Orgs
: : Audit Links
: : Security Links

: The News Page

: Your IP Address

: Contact
: Legal Disclaimer
Search







Audit Information systems & and IT Security

Information System audit and IT Security

Definitions and Terminology

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z


Engagement


See 'assurance engagement' and 'review engagement'. Not all engagements performed by practitioners are assurance engagements. An engagement in which the practitioner does not provide a conclusion concerning a subject matter is not an assurance engagement. For example, a practitioner may be engaged to report the results of applying certain procedures specified by management or the users of the practitioner's report. An engagement to apply specified procedures is not an assurance engagement because the practitioner would not necessarily perform all of the procedures that, in his or her judgement, would be necessary to express a conclusion concerning the subject matter as a whole. Other engagements typically undertaken by practitioners include management consulting engagements in which the practitioner is engaged to provide advice or recommendations to a client, and taxation engagements in which a practitioner is engaged to provide tax advice to a client. Such engagements are not assurance engagements because, for example, they do not involve an accountability relationship between management and a user.

source: ITAF, ISACA, 2008


Google
 
Web www.audit-is.com

 

 



   
Auditing Security and IT Systems
Copyright 2006-2008. All Rights Reserved. Something missing on this page? Let us know