Knowledge reuse in creating audit plans

Abstract

In this research the question of knowledge reusability in creating more reliable IT audit plans has been investigated. With the use of appropriate simulation techniques and statistical analysis, it has been proved that the explicit usage of self-reflection in IT auditing enables more precise audit plans, therefore the execution might become more effective. This self-reflection means that auditing methodologies are largely depending on the results of previous examinations of certain areas. In fact, the most widespread methods and guidelines are also based on the experience gained through previous examinations. If the results gathered in this way are being used, more precise audit plans can be made and the designation of the areas to be examined can become more accurate. If the fact that audit methodologies are primarily based on practical experience is accepted and explicitly formulated, then, with the use of the information acquired in previous audits, better and more precise audit plans can be created. In other phrases: the assignment of control objectives in certain situations of examination can be done based on the experiences from previous audits. Additionally, the audit plans created in this way enable the cost-effective execution of audits, without sacrificing accuracy and reliability. The results of the simulation confirm these statements.