IT systems are the foundation for many of the critical business processes in an organization. Accordingly, the quality of controls over IT has a direct impact on the effectiveness of controls that manage those critical functions. Scope requirements for many types of audits, such as SOX 404, HIPAA and GLBA include IT general controls related to the security, integrity, confidentiality and availability of the organization’s critical data.
IT Audit Support services are a seamless component of GBQ’s audit services, including financial reporting, internal audit program development, privacy and fraud. Leveraging his operations, security and compliance experience, Mike conducts a focused assessment that fully supports the scope of the audit and addresses the unique operating environment of the client.
A common IT Audit engagement related to Sarbanes Oxley typically includes:
GBQ can structure relationships that: