What is IT controls? | Definition from TechTarget

An IT control is a procedure or policy that provides a reasonable assurance that the information technology (IT) used by an organization operates as intended, that data is reliable and that the organization is in compliance with applicable laws and regulations. IT Controls can be categorized as either general controls (ITGC) or application controls (ITAC).

An IT general control should demonstrate that the organization has a procedure or policy in place for technology that affects the management of fundamental organizational processes such as risk management, change management, disaster recovery and security. IT application controls, which are actions that a software application does automatically, should demonstrate that software applications used for specific business processes (such as payroll) are properly maintained, are only used with proper authorization, are monitored and are creating audit trails.

IT controls are a subset of the more general term, internal controls.

Continue Reading About IT controls

Wikipedia has an entry for information technology controls.

IT controls

Continue Reading About IT controls

Dig Deeper on Risk management and governance

ISO 14000 and 14001

How to prepare for a cybersecurity audit

customer service charter

IT operations management (ITOM)

Continue Reading About IT controls

Related Terms

Dig Deeper on Risk management and governance

ISO 14000 and 14001

How to prepare for a cybersecurity audit

customer service charter

IT operations management (ITOM)