Skip to main content
Please wait...

ITGC Training

Our Understanding of Scope for IT Audit

Management wishes to invite proposal for the said IT Audit as per the scope below:

1. Internal Vulnerability Assessment (VA) of the Application.

2. ITGC control testing of the application which will include the following activities:

  • Application Security 
  • Access control Management
  • Input / Output Controls
  • Incident / Security Incident and Problem Management Process
  • Change Management Process
  • Release Management Process
  • Backup and Disaster Recovery Process
  • Interfaces Process and Security Control
  • Application System and Support Documentation

IT General Controls

The IT General Controls capability covers identification, evaluation and validation of controls, including reporting of areas for improvement identified together with our recommendations, in the following areas:

  • Logical Access Management
  • Change & Release Management
  • Risk Management
  • Incident Management
  • SDLC
  • Application control reviews
  • End User Computing
  • Business Continuity
  • Policy Management
  • Operation Management
  • Infrastructure Physical Security

To know more contact us at info@riskpro.in