Financial institutions today must be prepared to undergo top-to-bottom audits aimed at finding chinks in their information security architectures. The advent of stricter auditing has resulted in major organizational changes. A new international standard, ISO 27001, has been codified to help organizations implement an effective information security management system. The Institute of Internal Auditors has published recommendations to determine an IT organization’s level of maturity in adopting the standard. The recommendations are formulated as a series of questions for auditors to investigate.”]
Source: https://www.cuinfosecurity.com/security-audit-findings-spurring-organizational-change-a-343