|
US$619.00 · In stock
Delivery: <= 7 days. True-PDF full-copy in English will be manually translated and delivered via email.
GB/T 34960.4-2017: Information technology service -- Governance -- Part 4: Audit guidance
Status: Valid
| Standard ID | Contents [version] | USD | STEP2 | [PDF] delivered in | Standard Title (Description) | Status | PDF |
| GB/T 34960.4-2017 | English | 619 |
Add to Cart
|
7 days [Need to translate]
|
Information technology service -- Governance -- Part 4: Audit guidance
| Valid |
GB/T 34960.4-2017
|
PDF similar to GB/T 34960.4-2017
Basic data | Standard ID | GB/T 34960.4-2017 (GB/T34960.4-2017) | | Description (Translated English) | Information technology service -- Governance -- Part 4: Audit guidance | | Sector / Industry | National Standard (Recommended) | | Classification of Chinese Standard | L77 | | Classification of International Standard | 35.080 | | Word Count Estimation | 31,355 | | Date of Issue | 2017-11-01 | | Date of Implementation | 2018-05-01 | | Regulation (derived from) | National Standard Announcement 2017 No. 29 | | Issuing agency(ies) | General Administration of Quality Supervision, Inspection and Quarantine of the People's Republic of China, Standardization Administration of the People's Republic of China | GB/T 34960.4-2017: Information technology service -- Governance -- Part 4: Audit guidance---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
Information technology service-Governance-Part 4. Audit guidance
ICS 35.080
L77
National Standards of People's Republic of China
Information Technology Services Governance
Part 4. Audit guidelines
Part 4.Auditguidance
Posted.2017-11-01
2018-05-01 implementation
General Administration of Quality Supervision, Inspection and Quarantine of People's Republic of China
China National Standardization Administration released
Directory
Foreword Ⅲ
1 Scope 1
2 Normative references 1
3 Terms and definitions 1
4 General Principles of Auditing
4.1 Relationship between audit and governance 3
4.2 Audit Structure and Relationship 3
4.3 audit basis 3
4.4 Audit Methods 3
4.5 Audit Technology 4
4.6 Audit Quality Control 4
4.7 Audit business types 4
4.8 Audit Implementation 4
5 Audit Organization Management 4
5.1 General 4
5.2 Audit Environment 5
5.3 Audit agency
5.4 Audit rules and regulations 5
6 Auditors 7
6.1 Professional Ethics 7
6.2 Knowledge, skills, qualifications and experience 7
6.3 professional competence 7
6.4 Use of external expert services 7
7 Internal Control Audit 7
7.1 General 7
7.2 Organizational Control Audit 8
7.3 General Control Audit 10
7.4 Application Control Audit 12
8 special audit 13
8.1 General 13
8.2 Application System Lifecycle Management Special Audit 13
8.3 Information Security Special Audit 14
8.4 Risk Management Special Audit 14
8.5 Supply Management Special Audit 15
8.6 Business Continuity Management Special Audit 15
8.7 Quality Management Special Audit 15
8.8 Service Management Special Audit 15
8.9 Project Management Special Audit 15
8.10 Asset Management Special Audit
8.11 Special Investment Management Audit 16
8.12 Compliance Special Audit 16
8.13 Data Governance Special Audit 16
8.14 Performance Audit 17
Audit Process 17
9.1 General 17
9.2 Audit Preparation 17
9.3 Audit Implementation 17
9.4 Audit Closing 18
9.5 Follow-up audit 18
Audit Report 18
Appendix A (Informative) Application of Audit Methods 19
Appendix B (informative) audit technical implications and application note 21
Appendix C (Informative) Audit Report 24
References 26
Foreword
GB/T 34960 "Information Technology Services Governance" is divided into the following sections.
--- Part 1. General requirements;
--- Part 2. Implementation Guide;
--- Part 3. Performance Evaluation;
--- Part 4. Audit Guidelines;
--- Part 5. Data governance norms;
This section GB/T 34960 Part 4.
This section drafted in accordance with GB/T 1.1-2009 given rules.
Please note that some of this document may be patentable. The issuing agencies of this document do not bear the responsibility of identifying these patents.
This part of the National Information Technology Standardization Technical Committee (SAC/TC28) and focal point.
This part of the drafting unit. Shanghai Bandung Information Technology Consulting Co., Ltd., China Electronics Standardization Institute, Shanghai computer software
Technology Development Center, Shanghai Valley Air Information Technology Development Co., Ltd., Shanghai Han Wei Information Management Consulting Co., Ltd., Sichuan long distant Yinhai Software
Co., Ltd., Beijing Teamsun Technology Co., Ltd., Ruihua Certified Public Accountants (Special General Partnership) Shanghai Branch, Guangzhou Competition
Po Certification Center Services Ltd., Beijing long its Software Co., Ltd., Shenyang 赛 Bao Technology Services Ltd., UF Network Technology
Co., Ltd., Shanghai Youkai Information Technology Co., Ltd., Shenzhen Tower Information Technology Co., Ltd., Beijing Escort Technology Co., Ltd., China Unicom
System Integration Co., Ltd., CICC Data Systems Co., Ltd., Shenzhen SaiXi Information Technology Co., Ltd., KuaiWei Technology Group Co., Ltd., Shanghai
City Pudong New Area Information Society, Shanghai Hanchang Information Technology Development Co., Ltd., Chengdu Information Technology Application Development Center, Shanghai Entrepreneurial Branch
Technology Co., Ltd., Digital China Digital Information Services Co., Ltd., Beijing Shenzhou Taiyue Software Co., Ltd., Beijing Fortis Kim Shin Computer
System Services Ltd., Guangzhou Saibao Lianrui Information Technology Co., Ltd., South Granville Software Co., Ltd., Shenzhen Itek Engineering Consulting
Supervision Co., Ltd., Chengdu Anqinqin Information Technology Co., Ltd., Beijing Beida Information Engineering Consulting Co., Ltd., Beijing Shenzhou Digital Rui
Bank Express Information Technology Services Ltd., Shanghai North Tower Software Co., Ltd., Baosteel Resources Holdings (Shanghai) Co., Ltd., Beijing letter City
Digital Technology Co., Ltd.
The main drafters of this section. Yu Wenping, Zhang Mingying, Li Ming, Han Jia Yun, Wu Yue, Pan Rong, Lu Lei, Song Jundian, left Tianzu, Zhang Shaohua,
Song Yuewu, Li Lu, Sun Pei, Liu Xiaoyin, Yang Quan, Ji Xinhua, Zhu Shengzhe, Yu Hao, Xu Fei, Wei Dong, Wang Chuntao, Xiang Jilan, Xiao Jianyi,
Song Changfa, Qian Weifeng, Yang Lin, Wang Zheng, Wang Yongjun, Gan Qiong, Xu Xuhua, Wang Qinglei, Liu Yuenan, Li Feng, Zhang Zhaoyuan, Shen Guohua, Wang Dong, Liang Xiaoyan,
Yu Li Ping, Qiu Jing, Zhang Leilei, He Min, Hao Shouqin, Chen Hongfeng, Huang Jianxin, Qiao Chunyan, Li Gang, Sun Jun, Tan Yan Qi, Wu Yan, Hou Shanshan, Ma Hongjie,
Liu Ling, Xu Tao, Jinqiao, Lu Wenjun.
Information Technology Services Governance
Part 4. Audit guidelines
1 Scope
GB/T 34960 provisions of this part of the Information Technology Audit (hereinafter referred to as IT audit) General, audit organization and management, auditors, audit
Accounting process, audit reports, the audit of the object and scope of content.
This section applies to.
a) Organizational governance body to implement IT audit oversight functions;
b) establish or improve the organization's IT audit system;
c) Clearly organize the relevant requirements in the IT audit process;
d) standardize the organization's IT audit business;
e) establish or improve the guidance of the information system under the audit;
f) guidance from third parties or other relevant agencies on conducting IT audits;
g) Organizations that have or have not established an internal IT audit organization may engage third parties to conduct IT in accordance with the relevant requirements of this standard
audit.
All kinds of information management departments at all levels, regulatory agencies and audit supervision agencies may, in accordance with laws, regulations and departmental rules and regulations, use this standard
Standardize and supervise IT audits of all kinds of organizations under its jurisdiction.
2 Normative references
The following documents for the application of this document is essential. For dated references, only the dated version applies to this article
Pieces. For undated references, the latest edition (including all amendments) applies to this document.
GB/T 34960.1-2017 Information technology services governance Part 1. General requirements
3 Terms and definitions
The following terms and definitions apply to this document.
3.1
Information Technology Governance informationtechnologygovernance
A set of governance rules that focus on the IT system and its performance and risk management. It consists of leadership relationships, organizational structures and processes that
Ensure that information technology supports the organization's strategic goals.
[GB/T 29264-2012, definition 2.6]
3.2
Information Technology Audit informationtechnologyaudit; ITaudit
According to the requirements of IT audit standards, the information system and related IT internal control and process inspection, evaluation, and audit
opinion.
Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 34960.4-2017_English be delivered?Answer: Upon your order, we will start to translate GB/T 34960.4-2017_English as soon as possible, and keep you informed of the progress. The lead time is typically 4 ~ 7 working days. The lengthier the document the longer the lead time. Question 2: Can I share the purchased PDF of GB/T 34960.4-2017_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 34960.4-2017_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet. Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to [email protected]. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.
|