Dan's Internal Audit Corner
Auditing IT Initiatives “Thought
Leadership”.
- (Because an IT Project Failure is NOT An Option)
Each month Dan Swanson, a senior security and internal audit professional will provide his list of recommended resources for AuditNet readers. If you have questions about this page or the links, you can reach Dan at www.securitybenchmark.com and dswanson_2005@yahoo.com.
Leadership is the great challenge of the 21st century in science, politics, education, and industry. But the greatest challenge in leadership is parenting. We need to do more than just get our enterprises ready for the challenges of the twenty-first century. We also need to get our children ready for the challenges of the 21st century. - Jim Rohn.
Assessing the implementation “preparedness” of your various IT initiatives is always needed prior to start-up – (by someone).
Some key questions to consider:
- Does the proposed IT solution work & will it meet the needs of the organization?
- Does the security aspect of the IT solution work?
- Will the privacy of the organization’s information be maintained?
- Will the staff know how to perform “productively” and accurately?
- Have we done everything necessary to be prepared?
- Are we ready to implement and how do you know it'll work?
Some resources to assist your “readiness” assessment effort are provided here.
Bottom Line - auditing the implementation “preparedness” of your IT initiatives is one of the highest “value-added” services an internal audit function can provide the organization.
Have a great month.
Dan Swanson
The drill down resource page (is provided below).
Resources to assist your readiness assessment efforts:
Internal auditors play a valuable role in ensuring that IT investments
are well-managed and have a positive impact on an organization. Their
assurance role supports senior management, the audit committee, the board
of directors, and other stakeholders. Internal auditors need to take a
risk-based approach in planning their many activities on IT project
audits. With limited audit resources, auditors must focus on the
highest-risk project areas, while adding value to the organization. Audit
best practices suggest internal auditors should be involved throughout a
project's life cycle — not just in post-implementation assessments.
Are You Learning From Project to Project?
If you're among the 99 percent of us who fail this simple test—but
shouldn't—you could be in a position of weakness, to the detriment of your
current and upcoming projects.
Early Warning Signs of IT Project Failure: The Dominant Dozen.
The postmortem examination of failed IT projects reveals that long
before the failure there were significant symptoms or “early warning
signs.” This article describes the top 12 people-related and
project-related IT project risks, based on “early warning sign” data
collected from a panel of 19 experts and a survey of 55 IT project
managers.
No-Nonsense Advice for Successful Project
Successful projects don't just happen—they are made to happen. This
book goes beyond the basics of project management and reveals leading-edge
best practices that make all the difference between leading consistently
successful projects and playing the victim with troubled projects. (This
is one of my "all time" favorite books on project management AND
leadership).
Project Management “Reference” Summary
This reference summary started as an advanced project management
college course (project) in the mid 90’s. George has continued to expand
and refine the document over the years and it is available free of charge
(to help enhance the practice of project management world wide).
Have you studied their latest research? – (Best Practices for IT Projects)
The Importance Of Auditing IT Projects Well
Internal audit’s role regarding the implementation of IT initiatives varies widely, but also provides a significant opportunity for internal audit to deliver real value to the board and executive management. That is, internal auditors should play an important role in ensuring that IT investments are well-managed and have a positive effect on an organization.
Note – this is a fee based subscription (article).
IT Compliance Institute (ITCi) – “IT Audit Checklist for Risk Management”
Are you prepared for your next risk management audit? Know what to
expect.
Note – a brief registration is required (to download the free white
paper).
The PMI Knowledge & Wisdom Center
Truly one of the most amazing web sites regarding project management.
The IIA Project Management resource repository
Project management crosses many disciplines and many industries.
Leading resources are continually being released into the “public domain”
and the IIA has consolidated some of the best.
EDPACS: The EDP Audit, Control, and Security newsletter
For almost 35 years now, managers and colleagues have turned to EDPACS:
The EDP Audit, Control, and Security Newsletter for helpful and timely
guidance.
IT
Today
A monthly IT focused newsletter produced by Auerbach.
The opinions, beliefs and viewpoints expressed by the various authors and forum participants on this web site do not necessarily reflect the opinions, beliefs and viewpoints of AuditNet®
