Application Audit
Based on extensive experience delITad has developed its own methodology related to Application Auditing.
delITad Application Audit Methodology
Kick off
During this short phase called Kick-Off the exact scope of the project is determined and critical units/functions are identified. IT is important that the scope is determined in depth as well size. Concerning size, this indicates which management/departments will be reviewed. At the same time we will decide on a planning to document the next steps and a list of people of people involved.
Analysis
In the Analysis phase we will work based on interviews with the people involved and the reviews on the available documentation.
The processes will be analysed using identified control objectives to test the operational effectiveness and efficiency.
Evaluation
During the evaluation phase we will collect all results of the analysis phase according to the domains defined in the analysis.
According to the scope tests will be performed to verify effectiveness of controls within the selected domain. As controls are often described but not implemented into practice these tests are necessary to ensure the accuracy of our findings.
Reporting
The follwing reports will be delivered:
- Business process flowcharts
- Business process risk and control matrix
- Generic IT risk and control matrix
- Vendor assessment
- Technology assessment
- Summarized conclusion
- Recommendations
Quality Guarantee
To guarantee progression, follow-up and success of the project there will be an independent quality assessment of the project on a continuous basis.
Project Management
During the complete runtime of the project you will be updated continuously on planning and timing. This will take place based on your own templates, if these are not available we use our own.
