“Internal Audit: The Third Line of Defense”

Robin Moore
Sr. IT Auditor

Protecting an organization from security threats is a team effort. Defense in depth means more than just multiple levels of security, it also means multiple departments working together in a common defense. No longer is Internal Audit the exclusive domain of Accountants, and by adding Security Experts to Internal Audit teams an organization can add another level of defense to its security posture. This presentation will look at security from the perspective of the Internal Auditor and discuss key reasons for adding security minded professionals to the Internal Audit teams as well as the common myths behind the adversarial nature of the relationship most departments believe they have with Internal Audit.