What process allows IS management to determine whether the activities of the organization differ from the planned or expected levels?
When should reviewing an audit client’s business plan be performed relative to reviewing an organization’s IT strategic plan?