Slofstra Software Inc.

Slofstra Software: Consulting Services: I/T Audit: Audit Objectives

Home

I/T Audit

Audit Objectives

Audit Discovery

Audit Assessment

E-Mail

Products for Developers

Software Applications

Consulting Services

Company Profile

Audit Scope

Depending on client needs the audit investigation can include any or all of the following:

1. Server, networking equipment and supporting software,
2. Application software packages,
3. Client workstations,
4. Data backup,
5. Peripheral equipment such as terminals, printers, modems,
6. Interfaces to other equipment,
7. Internet access, e-mail and other services.

Audit Objectives

Audit objectives are established initially, and typically include any or all of the following:

Infrastructure - Basic integrity and risk assessment: The audit will assess:
level of risk of mechanical failure and recommended protection measures,
vulnerability to unauthorized use or intrusion of the infrastructure,
protection of intellectual property and compliance with licence requirements.
Infrastructure - Current Capacity and Growth: The audit can baseline and project:
Current bottlenecks and inadequacies in the areas of bandwidth, storage and response time,
Anticipated capacity and support requirements for expected growth,
Support staff levels.
Sound I/T department practices: The audit may include any or all of the following objectives:
Ensure the integrity of system and exposure to risk meets or exceeds industry practice in all areas of technology.
Ensure reasonable levels of redundancy and backup exist.
Ensure support and recovery plans are in place.
Ensure company management is aware of risk associated with all open vulnerabilities.

Evaluation of necessity to deploy or upgrade common enabling technologies: Microsoft Windows, Microsoft Office
Fax Server
E-mail.

Note: protection against hazards such as property theft, fire, other disasters should be part of a more comprehensive corporate disaster recovery plan, and is not assessed by the I/T audit.