This report offers an overview and practical insight into information auditing drawing on practical examples and recognised audit methods. Written for information managers the report clearly guides the reader through the key stages of an information audit, focusing on how an audit can be sold to senior management and the benefits the audit can bring to organisational performance. The report will be of value to information managers in both public and private sectors.
The report covers the following issues:
- the purposes for information auditing from strategy development to legal compliance
- outsourcing the audit
- how to get organisational commitment
- practical tools and tips for carrying out the audit
- software for information auditing
- writing an audit report
- an introduction to developing information policies and strategies
To see a sample, view the Sample PDF (requires Adobe Acrobat).
Review
"The merit of Steve's report is the clarity with which it is written,
enabling anyone in an organization tasked with carrying out an
information audit to do so with excellent results. Many of the
sections contain useful checklists. As a result, the guide will be of
value not only to information professionals and intranet managers, but
also to business managers who have been asked to carry out an audit
for compliance, risk management or records management purposes and
have no idea of where to start. ... Overall, highly recommended, and I can't see how
any organization trying to maximize the benefit from its information
resources can justify not buying a copy."
>> Read the full review from 7th April 2005.
About the Author
Steve Wood is a Senior Lecturer in Information Management at the
School of Business Information, Liverpool John Moores University.
Steve lectures on undergraduate and postgraduate programmes on the
subject areas of e-business, information management, knowledge
management, content management and freedom of information. He is also
responsible for editing and maintaining the popular freedom of
information website, "Freedom of Information Act blog" at
<http://foia.blogspot.com>.
Steve also consults and trains on information management and
e-business issues with SMEs and large organisations. His textbook,
co-authored with Dave Chaffey entitled "Business Information
Management: improving performance using information systems" will be
published by FT Prentice Hall November 2004
<http://www.pearsoned.co.uk/>. Contact Steve by email to
<steve_wood62@hotmail.com>.
The basics are outlined in the article "Information Auditing: Key Concepts and How To Get Started", FreePint No.171.
Testimonials
- "Yes, it was [informative] and well written and presented. Very much so [value for money]. What I found particularly valuable in this report was the strong emphasis on practical application rather than endless debate about theories. The sample audit questions were extremely useful."
- "The report was very informative and was just what I was looking for. I thought it was very good value for money; similar topics from consultancies cost more than 10 times as much."
- "Very useful as a basic framework to carry out my audit from (I'll let
you know how successful it is when I finish it!) ... Reasonably priced and it will be a useful tool."
- "Thank you for the report it was very informative. We especially liked
its easy to read style. I would certainly say it was value for money and it was refreshing to see a good starter guide such as this available, as far too many of the guides go into far too much detail. Thank you for the opportunity to provide feedback."
- "Yes I found the report very informative, clear and easy to understand, and I would say it is good value for money."
- "Basically, we thought that it was informative and value for money. A good document that was very accessible and went immediately into use."
- "Whilst I have not finished reading the document I can say that it is informative, good value for the money and practical."
- "Thanks for the email. I found the report very useful especially as I have done Information Audits before and it had a well respected author as well. Value for money as well."
- "I have found very useful. It was clear, simple and easy reading. I have just written an audit for this organisation and used the report a lot, especially the section about Doing the Audit and the types of questions to ask/linking it to your business processes and objectives."
- "This document is remarkable for the:
- presentation: clear, professional
- for the structure: logical and simple
- for the point of view: from the information professional skills but without missing the client or customer's needs
- for the presentation of the objectives: the famous GAP
- for the style: short and concise.
Great report and congratulations. The same for your marvellous FreePint : I love it."
- "Well written and concise. Particularly like the coverage, e.g. pleasing range of chapters, links made to other relevant and related issues such as FoI, records management, info policy, etc., and the resources lists. It's up to date, easy to digest and nicely structured."
- "The report was incredibly informative. It was recommended to me as one of the best resources available on the subject of information auditing. I was not disappointed. Wood's text is concise and to the point, easy to use and honest. We could not have completed our audit successfully had we not have used this text.
It was excellent value for money.
Other related comments: The staff at FreePint are brilliant. Top customer
service - you really went out of your way to assure that we received our
requested item as quickly as possible. Thank you so much." Information Specialist
- "I was very impressed with the report. It collected the best advice from the plethora of sources (esp the primary sources) about information auditing, interpreted and organised it (along with his own extensive work in this area) in a very readable and usable way. It is an excellent 'one stop shop' guide for anyone - beginners to the experienced - interested in information audits, especially the guidance on what essential elements are needed and what should be in the report.
I thought it was very good value for money, and had occasion to recommend it to a group of research archivists that I was speaking to last week."
|
Table of Contents
| Section | Description | Page |
| Biographical note | 5 |
| Acknowledgements | 5 |
| Copyright | 5 |
| | |
| 1 | Setting the Scene | 6 |
| 1.1. | Introduction | 6 |
| 1.2. | Definitions | 7 |
| 1.2.1. | Data, information and knowledge | 7 |
| 1.2.2. | Information Management and information systems | 8 |
| 1.2.3. | Audit | 8 |
| 1.2.4. | Information Auditing | 8 |
| 1.2.5. | Audit methodologies | 8 |
| Generally all information audits should have the following common features | |
| | |
| 2 | Defining the purpose, scope and objectives | 10 |
| 2.1. | Importance of understanding the purpose | 10 |
| 2.2. | Identifying the objectives and terms of reference | 11 |
| 2.3. | Scope | 11 |
| | |
| 3 | Information audit purposes | 11 |
| 3.1. | Auditing information assets against business objectives and processes | 11 |
| 3.2. | Information Auditing for records management | 12 |
| 3.2.1. | Records Management | 12 |
| 3.2.2. | The DIRKS methodology | 13 |
| 3.2.3. | EDRMS implementation | 14 |
| 3.2.4. | Capturing best practice | 14 |
| 3.3. | Auditing for legal compliance | 15 |
| 3.3.1. | Freedom of Information Act compliance | 15 |
| 3.3.2. | Data protection compliance | 15 |
| 3.3.3. | Corporate compliance and other regulation | 16 |
| 3.4. | Information auditing for intranets | 16 |
| 3.5. | Information auditing for Content Management Systems (CMS) | 17 |
| | |
| 4 | Is there a difference between information and knowledge auditing? | 18 |
| | |
| 5 | Achieving organisational buy-in, management commitment and resourcing | 19 |
| | |
| 6 | Getting outside help | 19 |
| | |
| 7 | The audit roles and team | 20 |
| | |
| 8 | When should the audit be carried out? | 21 |
| | |
| 9 | Audit methods and tools | 21 |
| 9.1. | Business objective and process analysis related to information need | 21 |
| 10 | Doing the audit | 22 |
| 10.1. | Doing the audit – possible questions | 22 |
| 10.1.1 | Basic operational data | 22 |
| 10.1.2 | Possible audit questions | 22 |
| 10.1.3 | Questions related to creation of information | 22 |
| 10.1.4 | Questions related to the flow of information | 22 |
| 10.1.5 | Questions related to the management of information | 23 |
| 10.1.6 | Questions related to use of information | 23 |
| 10.1.7 | Information value | 23 |
| 10.1.8 | General questions related to information resources | 23 |
| 10.1.9 | Questions related to paper documents/records | 24 |
| 10.1.10 | Questions related to electronic documents/documents | 24 |
| 10.2. | Questionnaires | 25 |
| 10.3. | Piloting questionnaires | 25 |
| 10.4. | Guidance for questionnaires | 25 |
| 10.5. | Interview or questionnaire or both? | 26 |
| 10.6. | Interviews | 26 |
| 10.7. | Other supplementary sources of data | 27 |
| | |
| 11 | Undertaking the audit | 27 |
| 11.1. | Software | 27 |
| | |
| 12 | Information maps and flow diagrams | 31 |
| | |
| 13 | Calculating financial costs and value | 31 |
| | |
| 14 | Analysis of findings and gap analysis | 32 |
| | |
| 15 | The audit report | 33 |
| | |
| 16 | Policy | 34 |
| | |
| 17 | Developing an information strategy | 35 |
| | |
| 18 | Communicating the audit findings | 36 |
| | |
| 19 | Resources – web | 37 |
| | |
| 20 | Resources – books and reports | 39 |
| | |
| 21 | Resources – articles | 40 |
| | |
| 22 | Resources – Training and Consultancy | 41 |
| | |
| 23 | Resources- Software | 41 |
|
|
|
