Information Systems Audit

IT Systems Audit
by digiGeek

Information Systems Audit

Advisory, consulting, evaluation and risk assessment of business relevant IT risk in the IT environment, the IT strategy and/or the IT organization.

IT General Controls - Understand, walkthrough, test & evaluate IT general controls.
- Define scope
- Determine testing strategy
- Select controls to test
- Eval of effectiveness
- Chose controls to test
- Design controls tests
- Execute controls tests
- Eval results
- Respond to test results

IT Application Controls are controls over the input, processing, and output functions. Use both,
- Automated controls and
- Manual procedures to ensure proper coverage. These controls help
- ensure data accuracy, completeness, validity, verifiability, and consistency, and thus ensure the confidentiality, integrity and availability of the application and its associated data.
- Ensure the input data is complete, accurate and valid.
- Ensure the internal processing produces the expected results.
- Ensure the processing accomplishes the desired tasks.
- Ensure output reports are protected from disclosure.
- Control totals/batch balancing.
- Reconciliation of accounts.
- Exception handling.
- etc.

Special Tasks & Investigations

- Data Protection (DSG 235.11)
- IT Applications
- IT Infrastructure
- Disaster Recovery
- IT Outsourcing (ISAE 3402)
- IT Quality Reviews
- , etc..

In case of questions, don't hesitate to contact us from !


Matthias Seiler