IT Audit
Proactive piece of mind
Overview
The touchstone IT Audit consists of a thorough review of IT infrastructure, business processes and IT controls. The IT audit is performed by first obtaining a detailed understanding of the customer’s business environment, including a review of internal and external business processes. Next, a comprehensive review of IT functions is performed using industry best practices framework as a baseline standard.
The touchstone IT audit is orientated around a review of four distinct categories for measuring IT effectiveness. A high level description of the four primary audit areas is shown below:
Key Benefits:
Full documentation of your systems so that we can manage your technology both remotely and onsiteThe state of your business’s technologyThe state of each hardware component and software application deployedThe specific configurations for your network-related hardware and softwareRecommendations for modifications and replacements based on current standardsPrioritization of any recommendations made, organized in phases to help our client’s create a technology roadmapBudget amounts for each recommendation you wish to pursueControl Objective
Review Areas
Are IT and the business strategy aligned?Is the enterprise achieving optimum use of its resources?Does everyone in the organization understand the IT objectives?Are IT risks understood and being managed?Is the quality of IT systems appropriate for business needs?
Planning and
Organization
Acquisition and
Implementation
Are new projects likely to deliver solutions that meet business needs?Are new projects likely to be delivered on time and within budget?Will the new systems work properly when implemented?Will changes be made without upsetting current business operations?
Delivery and
Support
Are IT services being delivered in line with business priorities?Are IT costs optimized?Is the workforce able to use the IT systems productively and safely?Are adequate confidentiality, integrity and availability in place?
Monitoring and
Evaluation
Is IT’s performance measured to detect problems before it is too late?Does management ensure that internal controls are effective and efficient?Can IT performance be linked back to business goals?Are risk, control, compliance and performance measured and reported?
