Characteristics of a deployed audit trail can determine the test procedures performed. With an acceptable audit trail, the IT auditor may decide to trace selected data or information through the entire configuration or to determine infrastructure availability. Without a trail, the IT auditor may decide to execute extensive substantive tests on the electronically encoded configuration items.
“View Part I of the IT Audit Verification Planning: Resolving Technique Selection series here“