IT General Controls Audit

Audit Objective

Provide management assurance that the proper system controls have been implemented across its IT Systems and Network environments

Potential Scope Areas

• IncientyManagement
  Privileged Accesst Management
• Host Security Review
• Internal Network Domain Security Review
• IT Disaster Recovery Review
• Security Administration
• Database Security
• Endpoint Security 
• Policy/Standards Review
• Access Control & Identify Management
• Cybersecurity & Network Security Review

Type of Issues Identified by an Audit Serve IT General Controls Audit

• Internal systems are accessible from the Internet
• Monitoring processes are not in place to detect external attacks
• Applications IDs used by the application to authenticate to the database are not properly secured
• Detective review processes do not exist to identify production job & backup failures

Next Steps

Complete the Information Request form  and Audit Serve will contact you to scale the audit scope to the requirements of your organization and establish a proposal for the engagement.