An organization’s IS audit charter should specify the:
A.
short- and long-term plans for IS audit engagements
B.
objectives and scope of IS audit engagements.
C.
detailed training plan for the IS audit staff.
D.
role of the IS audit function.
Explanation:
An IS audit charter establishes the role of the information systems audit function. The charter should
describe the overall authority, scope, and responsibilities of the audit function. It should be
approved by the highest level of management and, if available, by the audit committee. Short-term
and long-term planning is the responsibility of audit management. The objectives and scope of each
IS audit should be agreed to in an engagement letter. A training plan, based on the audit plan,
should be developed by audit management.