Home Contact Us Leave Us Message
   
 

 
     
   
 
7. Information Systems Audit
 
In the area of information systems technology, the state of the art changes rapidly. With our CISA/ ISA Qualified Partners, we endeavour to bring to our clients valuable knowledge of effective Information Systems Control Methodologies and an awareness of the unique control requirements peculiar to certain Information Systems Environments.
 
The Global Information Risk Management (IRM) team works with A S B & ASSOCIATES clients across the spectrum of information technology risk and performance.
 
  • Security, Privacy and Continuity : In today's business environment, the reputation of a business, indeed its existence, can be impacted significantly by the strength of the security, privacy and business continuity mechanisms it has in place. Fundamental controls, such as the segregation of duties, are often completely reliant on the strength of technology based access controls. In a world of global communications networks, security vulnerabilities can be quickly exploited. Well-publicized frauds and scams erode public confidence.

  • IT Internal Audit Services : For some time, risk management through internal audit has been considered a contributing factor to an effective corporate governance framework. With developments, this perception is further reinforced. The quality and effectiveness of Internal Audit functions are diverse, as are their mandate. To achieve effective Internal Audit coverage, specialist skills will often be required to assess the business' specific risks. Where IT is concerned, technical subject matter specialists are often required.

  • IT Attestation Services : In an environment where customers and clients are increasingly impacted by a business' IT systems, extra assurance is often required to satisfy stakeholder expectations. SAS 70 and similar standards examinations demonstrate that clients have undergone a comprehensive review of control activities. This includes controls over transaction processing as well as IT and related processes. Reviews provide clients with a third party attestation against the organization's internal control objectives. A formal report including the auditor's opinion is issued to the client at the conclusion of the examination.

  • IRM in the External Audit : IRM is a vital part of the external audit and is used to evaluate financial audit risk. This involves identifying financial and operational risks embedded in business systems and processes, and providing advisory on risk mitigation. IRM professionals integrate technology issues into the framework of the audit, working as part of the audit team to assess the technology component of business issues, risks, and strategies.
 
 
 
 
 
 
     
267837 Times Visited