A successful audit can help you determine whether you have the best practices in place to meet your business's continual needs for security, access and resiliency. The purpose of an audit is not to rehash past mistakes but to look at past events with a view toward improving future performance. Findings from an audit can be used as a basis for adjusting policies, priorities, structure or procedures in order to make operations as efficient, economical and effective as possible.
Information Technology Evaluation and Audit consists of:
- Information technology management
- Information technology policies and procedure
- Systems development
- Programming control
- Physical security
- Logical security
- Basic network control
- Input, processing, and output control
- Data backup procedure
Disaster recovery planning and testing
No comments:
Post a Comment