Information System Audit
The purpose for information system audit is to verify that the information systems installed and used by the company, and the users of such systems, comply with all security regulations and general controls established for information technology. By evaluating the actual situation of the company and assessing the risks associated, we will recommend the necessary steps to mitigate the risk of threats and detect vulnerabilities. The information system audit involves the review and test for the following areas:
- Organizational aspects of security
- Physical security and its environment
- Access control
- Controls for the accounting application
- Security pertaining to the personnel
- Communications and operative endeavors
- Continuity of operations.
