A new survey found that 42% of heads of internal audit and 72% of chief information officers polled by Ernst & Young aren’t confident the audit committee is aware of the IT risks facing their organisations.
Erol Mustafa, partner at Ernst & Young who heads up IT internal audit services, said: ‘Today the audit committee must be prepared to not only discuss but confidently challenge the IT related threats, vulnerabilities and risks facing their business.’
‘Regulation, such as Sarbanes-Oxley and the future EU eighth directive, increases the need for audit committees to understand IT risks and implications for the business. Organisations must put greater focus on internal controls and governance structures.
‘IT controls failures or an inability to detect and resolve IT control issues can carry heavy operational, financial and reputational risks, particularly when those risks become public knowledge.’
Two new audit partners have been appointed at the firm BDO in its audit practice following continued growth and investment
Investment in people, tech and businesses impacts on EY's profit per partner figure
If businesses do not take cyber security seriously in their business planning regulators may do it for them, the ICAEW has warned
Dr Richard Willis provides a several thousand-year history lesson of the profession, from origin to modern-day