Online Courses
IS Auditing, Controls and Assurance
Online Courses
IS Auditing, Controls and Assurance
  • Information Systems Auditing, Controls and Assurance
  • Introduction to Information Systems (IS) Auditing
    • Risk in Information Systems (IS)
    • Risk Management Process
    • Identify Internal Controls
    • Quiz
  • General IS Audit Procedures
    • Understant the audit areas/subjects
    • Compliance Testing and Substantive Testing
    • Practice Quiz
    • Evidence
    • ISACA Outlines Five Steps to Planning an Effective IS Audit Program
    • Quiz
  • Business Application Development and the Roles of IS Auditors
    • What is business application development process / Systems Development Life Cycle (SDLC)?
      • SDLC Models
    • Feasibility and Requirements
    • Design and Selection
    • Development and Configuration
    • Configuration - Input/Output Controls
    • Implementation
    • Post-Implementation Review
    • Risks Associate with Application Development
    • Role of IS Auditor in SDLC
    • Quiz
  • IS Maintenance and Control
    • IS Maintenance Practices
    • Change Management
    • Documentation
    • Emergency Changes
    • IS Controls
    • Quiz
Powered by GitBook
On this page
  • What is risk?
  • Why do we take risk?
  • Elements of risk
  • Threats
  • Impact
  • Probabilities
  1. Introduction to Information Systems (IS) Auditing

Risk in Information Systems (IS)

What is risk?

The possibility of having negative impact.

Why do we take risk?

Thinking of having positive impact.

Elements of risk

Threats

Types of threats are:

  • Natural disaster

  • Man-made threats

    • Internal

    • External

Internal threats have the possibility of being of higher impact to the organization.

  • Technical

Impact

Measure of damage.

Quality measures can be:

  1. Negligible

  2. Minor

  3. Moderate

  4. Serious

  5. Major

Probabilities

Likelihood of having risk:

  1. Very unlikely

  2. Unlikely

  3. Possible

  4. Likely

  5. Probable

PreviousInformation Systems Auditing, Controls and AssuranceNextRisk Management Process

Last updated 6 months ago