You are a junior auditor working in Big-4 Auditing Limited, a world-wide auditing firm. Recently the CEO of Norden acquire external audit service from Big-4 Auditing Limited. As the CEO of Norden planned to exercise IT auditing activity as soon as Norden takes over Sedan, you are asked todraft an IT auditing plan for Sedan:

(a) Based on your understanding of Sedan (the company) described in the case, describe howan IS auditor understand the audit areas and the audit subjects.

(b) Suggest two IS auditor's responsibility for the IT auditing activities.

(c) Suggest two IS auditor's authority for the IT auditing activities.

(d) How would you perform compliance testing to the controls you suggested in Q1. Also, suggest some substantive testing to ensure the integrity of the eStore system.

(e) Suggest two possible means for the company to perform control self-assessment (CSA).

(f) As an IS auditor, whom should you report to and which parties are the responsible for following up the suggestions from the audit plan report?