A study on information systems auditing processes using AHP - An approach to audit engineering

Yuji Shimada, Kenichi Nakashima, Toyokazu Nose

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

The role of IS (Information Systems) auditing is becoming increasingly important because IS auditing is one of the most important components of FT governance and corporate governance. Therefore, IS auditors should be able to explain the audit process, their objectivity and conclusions of the audit. The audit process is based on risk assessment. Auditors should assess various kinds of IS risks, for instance, effectiveness risk, efficiency risk, compliance risk, legal risk, confidentiality risk, availability risk and integrity risk. Risk assessment consists of impact assessment and probability assessment. But auditors cannot make precise assessments of impact and probability, because there are no common measures for assessing the risk. In this paper, we discuss a risk assessment method that analyzes various kinds of risks using AHP (Analytic Hierarchy Process). Auditors can assess various kinds of risk using AHP, and they can explain their risk assessment results numerically. The proposed approach contributes to improving the audit process. Numerical results based on the actual data are given to show the usefulness of the methodology.

Original languageEnglish
Pages (from-to)511-519
Number of pages9
JournalJournal of Japan Industrial Management Association
Volume57
Issue number6
Publication statusPublished - 2007 May 21
Externally publishedYes

Fingerprint

Auditing
Audit
Analytic hierarchy process
Analytic Hierarchy Process
Information Systems
Information systems
Engineering
Risk Assessment
Risk assessment
Risk Process
Governance
Confidentiality
Compliance
Integrity
Availability
Numerical Results
Methodology

ASJC Scopus subject areas

  • Engineering (miscellaneous)
  • Industrial and Manufacturing Engineering

Cite this

A study on information systems auditing processes using AHP - An approach to audit engineering. / Shimada, Yuji; Nakashima, Kenichi; Nose, Toyokazu.

In: Journal of Japan Industrial Management Association, Vol. 57, No. 6, 21.05.2007, p. 511-519.

Research output: Contribution to journalArticle

Shimada, Yuji ; Nakashima, Kenichi ; Nose, Toyokazu. / A study on information systems auditing processes using AHP - An approach to audit engineering. In: Journal of Japan Industrial Management Association. 2007 ; Vol. 57, No. 6. pp. 511-519.
@article{b3bb7d2dfcd64cbf884c34ca0b6b5c7c,
title = "A study on information systems auditing processes using AHP - An approach to audit engineering",
abstract = "The role of IS (Information Systems) auditing is becoming increasingly important because IS auditing is one of the most important components of FT governance and corporate governance. Therefore, IS auditors should be able to explain the audit process, their objectivity and conclusions of the audit. The audit process is based on risk assessment. Auditors should assess various kinds of IS risks, for instance, effectiveness risk, efficiency risk, compliance risk, legal risk, confidentiality risk, availability risk and integrity risk. Risk assessment consists of impact assessment and probability assessment. But auditors cannot make precise assessments of impact and probability, because there are no common measures for assessing the risk. In this paper, we discuss a risk assessment method that analyzes various kinds of risks using AHP (Analytic Hierarchy Process). Auditors can assess various kinds of risk using AHP, and they can explain their risk assessment results numerically. The proposed approach contributes to improving the audit process. Numerical results based on the actual data are given to show the usefulness of the methodology.",
author = "Yuji Shimada and Kenichi Nakashima and Toyokazu Nose",
year = "2007",
month = "5",
day = "21",
language = "English",
volume = "57",
pages = "511--519",
journal = "Journal of Japan Industrial Management Association",
issn = "0386-4812",
publisher = "Nihon Keikei Kogakkai",
number = "6",

}

TY - JOUR

T1 - A study on information systems auditing processes using AHP - An approach to audit engineering

AU - Shimada, Yuji

AU - Nakashima, Kenichi

AU - Nose, Toyokazu

PY - 2007/5/21

Y1 - 2007/5/21

N2 - The role of IS (Information Systems) auditing is becoming increasingly important because IS auditing is one of the most important components of FT governance and corporate governance. Therefore, IS auditors should be able to explain the audit process, their objectivity and conclusions of the audit. The audit process is based on risk assessment. Auditors should assess various kinds of IS risks, for instance, effectiveness risk, efficiency risk, compliance risk, legal risk, confidentiality risk, availability risk and integrity risk. Risk assessment consists of impact assessment and probability assessment. But auditors cannot make precise assessments of impact and probability, because there are no common measures for assessing the risk. In this paper, we discuss a risk assessment method that analyzes various kinds of risks using AHP (Analytic Hierarchy Process). Auditors can assess various kinds of risk using AHP, and they can explain their risk assessment results numerically. The proposed approach contributes to improving the audit process. Numerical results based on the actual data are given to show the usefulness of the methodology.

AB - The role of IS (Information Systems) auditing is becoming increasingly important because IS auditing is one of the most important components of FT governance and corporate governance. Therefore, IS auditors should be able to explain the audit process, their objectivity and conclusions of the audit. The audit process is based on risk assessment. Auditors should assess various kinds of IS risks, for instance, effectiveness risk, efficiency risk, compliance risk, legal risk, confidentiality risk, availability risk and integrity risk. Risk assessment consists of impact assessment and probability assessment. But auditors cannot make precise assessments of impact and probability, because there are no common measures for assessing the risk. In this paper, we discuss a risk assessment method that analyzes various kinds of risks using AHP (Analytic Hierarchy Process). Auditors can assess various kinds of risk using AHP, and they can explain their risk assessment results numerically. The proposed approach contributes to improving the audit process. Numerical results based on the actual data are given to show the usefulness of the methodology.

UR - http://www.scopus.com/inward/record.url?scp=34248594144&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=34248594144&partnerID=8YFLogxK

M3 - Article

VL - 57

SP - 511

EP - 519

JO - Journal of Japan Industrial Management Association

JF - Journal of Japan Industrial Management Association

SN - 0386-4812

IS - 6

ER -