ITGC Training
Our Understanding of Scope for IT Audit
Management wishes to invite proposal for the said IT Audit as per the scope below:
1. Internal Vulnerability Assessment (VA) of the Application.
2. ITGC control testing of the application which will include the following activities:
- Application Security
- Access control Management
- Input / Output Controls
- Incident / Security Incident and Problem Management Process
- Change Management Process
- Release Management Process
- Backup and Disaster Recovery Process
- Interfaces Process and Security Control
- Application System and Support Documentation
IT General Controls
The IT General Controls capability covers identification, evaluation and validation of controls, including reporting of areas for improvement identified together with our recommendations, in the following areas:
- Logical Access Management
- Change & Release Management
- Risk Management
- Incident Management
- SDLC
- Application control reviews
- End User Computing
- Business Continuity
- Policy Management
- Operation Management
- Infrastructure Physical Security
To know more contact us at info@riskpro.in