Audit

We help the organizations to verify existence of objective evidence of processes, to assess how successfully processes have been implemented, for judging the effectiveness of achieving any defined target levels, provide evidence concerning reduction and elimination of problem areas, and hands-on process management tool for achieving continual improvement in an organization.

The various services offered under the Audit Platform are as follows.

Audit Objectives

Not Just another Audit This is to improve the processes, reduce the errors, compliance – all in tune/ sync with other audits
IT Governance Framework Defining, establishing and maintaining an IT governance framework (leadership, organizational structures and processes
Strategic Alignment Ensuring the link between business objectives and IT plans and operations
Value Delivery Optimizing expenses and providing the value of IT throughout its life cycle
Risk Management Identifying, assessing, mitigating and managing significant enterprise risks
Resource Management Optimizing the allocation of IT resources and maximizing their efficiency
Performance Management Tracking the delivery of IT projects and monitoring IT services
Compliance Regulatory and Standards Compliance – e.g. Sox, ISO

Types of Application Audit

  • Functionality
  • Vulnerability/Security
  • Performance
  • User Acceptance

Sox Audit

  • Phases of Audit
  • Business process review
  • Internal controls verification
  • IT general control, review and verification
  • IT application control review and verification
  • Deliverables
  • Gap analysis with severity and recommendations

ISMS Audit

  • Phases of Audit
  • Audit Planning schedule preparation
  • Customizing the available/ standard checklist
  • Audit methodologies
  • Norms for NC/ Observation
  • Evidence collection
  • Deliverables
  • Audit Report
  • Suggestions/ Recommendations for improvement

QMS Audit

Objective: To evaluate the available quality processes and map to the standards – ISO, CMMi.

  • Phases of Audit
  • Audit Planning schedule preparation
  • Studying the existing processes
  • Interviewing the stakeholders about the processes followed
  • Norms for NC/ Observation
  • Evidence collection
  • Deliverables
  • Audit Report
  • Suggestions/ Recommendations for improvement

Compliance

Training