From the course: Governance, Risk, and Compliance (GRC) Essentials by Pearson
Join today to access over 25,200 courses taught by industry experts.
Conducting the audit
From the course: Governance, Risk, and Compliance (GRC) Essentials by Pearson
Conducting the audit
In this video, we'll cover the steps involved in executing an audit, including assessment methods, validating evidence, and documents and findings. There are various techniques or methods auditors may use to evaluate your controls. You could be asked to speak with control owners in an interview. You could be asked to perform an examination and review documents such as policies or logs, or they can perform testing, which is when an auditor will try to simulate a scenario to validate control effectiveness. When it comes to validating evidence, there are three things you should be aware of. The first is that the evidence is complete, meaning all necessary documentation and elements for this evidence have been provided. You also need to make sure that the evidence provided is relevant. And so you can check this by asking yourself or your stakeholder if this piece of evidence directly supports the control being assessed. Lastly, is this evidence verifiable, meaning it can be independently…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.