On Tue, Jun 23, 2009 at 2:26 PM, David Fetter<david@fetter.org> wrote:
>> Auditors can be a funny breed.
>
> They can, at that, but in this case, they're simply doing the normal
> human thing of trying to figure out whether there's a way they can
> push off their work to someone or something else. In this case, they
> can't.
Depends what they've been hired to audit exactly - there's a
difference in the way they will attack the IT aspects of a financial
audit versus an IT management audit for example. In my experience, the
former is worse because they are often done by finance people who will
simply box-tick 'verified backups' before reporting to the board or
regulator, unlike an IT auditor who will look at the systems as a
whole and judge the processes based on their technical merit.
Anyway - this is pre-beer conference talk...
--
Dave Page
EnterpriseDB UK: http://www.enterprisedb.com