IT General Controls

We assist you with the evaluation of internal controls over the IT environment supporting your company’s financial applications. We use COBIT as a guiding framework (i.e., or other industry or regulatory specific) recognizing that IT controls are not the same for all clients. We gain an understanding of controls over areas of greater risk to the organization. We test relevant IT processes, policies, procedures and practices protecting the integrity and availability and of your systems and data.

We evaluate IT processes including key controls over:

  • IT Entity Level Controls
    • Tone at the top, policies in place, enforcement & monitoring activities
  • Managing Changes
    • Acquisition, Development or Major Changes to Application Software
    • Install Accredited Systems
    • Program Change Controls
  • Logical Access
    • Acquire and Maintain Technology Infrastructure/Configuration
    • Ensure System Security
  • Managing IT Operations
    • Manage Third Party Services
    • Manage Data Backups