The IT auditing and compliance process is inherently complex as it involves multiple internal and external stakeholders. Existing audit infrastructures have evolved from the bottom up and many organizations lack a single system of record preventing top down visibility and control. What tools does senior management need to gain this control?