According to The Institute of Internal Auditors, internal auditing in general is defined as an; ‘independent, objective assurance and consulting activity designed to add value and improve an organisation’s operations. It helps an organisation accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.’
We perform an Information Technology audit to examine and evaluate your organization’s information technology infrastructure, applications, data use and management, policies, procedures and operational processes against recognized standards or established policies.
Our approach concentrate on evaluating if internal controls to protect information technology assets exist and are functioning as expected to minimize business risk. Controls must ensure Confidentiality, Integrity and Availability (CIA) of your information assets, and aligned with your organizational goals and objectives.
Our internal IT audit processes are guided by effective IT governance frameworks and standards such as:
- Calder Moir Framework
- COBIT®
- ITIL® – The IT Infrastructure Library®
- ISO27001/2
- ISO20000
- IT Service CMM – IT Service Capability Maturity Model
- Business Process Framework (eTOM) and King 1V