Information Security Audit includes a series of tests that guarantee that information security meets all expectations and requirements within an organization. It occurs when a technology team conducts an organizational review to ensure that the correct and most up-to-date processes and infrastructure are being applied. Most commonly the controls being audited can be categorized to technical, physical and administrative. Auditing information security covers topics from auditing the physical security of data centers to auditing the logical security of databases and highlights key components to look for and different methods for auditing these areas.