| A general IT controls review covers the controls and security in place to protect an organization’s overall IT environment. The objective is to provide reasonable assurance that risks relating to IT systems and applications are controlled and that adverse events do not occur.
Continental auditors use extensive control libraries that are mapped to the risks embedded in a wide range of technology. Control weaknesses are identified and reported to the appropriate management. Our audits add value through specific recommendations that improve an organization’s use of technology.
Continental’s approach is based on industry best practices such as COBIT, ISO 27000 standards and Institute of Internal Auditors (IIA) technical audit guidelines. IT standards and guidelines from the US Department of Defense (DOD) and National Institute of Standards and Technology (NIST) are also used.
Some of the areas that we cover in our general IT controls review are displayed to the right. Please contact Continental Audit Services to request a proposal tailored to meet your specific requirements. |
