Auditing General IT controls - Audit scope
IT Management
Review of: -
Organisation Structure
Job Descriptions
Training Records
IT Plan
IT Committee
IT Budget – training and CAPEX
IT Policies
Project Management
Risk ManagementInsurance
IT Security
Review of: -
IT Security Policy
Network Security
Virus Protection
Software LicensingPatch Management
IT Operations
Review of: -
Backup process – onsite, offsite
Backup policy, strategy
Tape management – labelling, inventory, disposal
Physical security of Computer Room / Data Centre
Environmental controls of Computer Room / Data Centre
IT Procedures, operations manual
BCP
Review of: -
Physical security of DR site
BCP Plan
BCP Infrastructure
BCP testing – test plan, script
BCP Committee
Change Management
Review of: -
Change Management Procedures
Service Request Notes – identify long outstanding issues
UAT process
Review of: -
Organisation Structure
Job Descriptions
Training Records
IT Plan
IT Committee
IT Budget – training and CAPEX
IT Policies
Project Management
Risk ManagementInsurance
IT Security
Review of: -
IT Security Policy
Network Security
Virus Protection
Software LicensingPatch Management
IT Operations
Review of: -
Backup process – onsite, offsite
Backup policy, strategy
Tape management – labelling, inventory, disposal
Physical security of Computer Room / Data Centre
Environmental controls of Computer Room / Data Centre
IT Procedures, operations manual
BCP
Review of: -
Physical security of DR site
BCP Plan
BCP Infrastructure
BCP testing – test plan, script
BCP Committee
Change Management
Review of: -
Change Management Procedures
Service Request Notes – identify long outstanding issues
UAT process
Labels: control
posted by man at 7:57 PM
0 Comments:
Post a Comment
<< Home