IT Audit and IS Security Audit

IT Audit and IS Security Audit

Tylers conducts IT audits to examine the management controls within your IT infrastructure. The evaluation of obtained evidence determines if the information systems are safeguarding assets, maintaining data integrity and operating effectively to achieve your organisation’s goals or objectives.

Our IT audit is different from a financial statement audit. While a financial audit’s purpose is to evaluate whether an organisation is adhering to standard accounting practices, the purposes of an IT audit are to evaluate your system’s internal control design and effectiveness. These include, but are not limited to, efficiency and security protocols, development processes and IT governance or oversight.

Tylers also performs IS security audit, which is an audit on the level of information security in your organisation. Most commonly the controls being audited can be categorised to technical, physical and administrative.

Auditing information security covers topics from auditing the physical security of your organisation’s IT infrastructure to the auditing of databases and highlights key components to look for and different methods for auditing these areas.

Risks

We usually begin an audits firstly by performing risk analysis. Here, Critical assets are defined, and threat regarding these assets are identified. Our checkpoints are based on the identified threats. Afterwards, risk level is calculated for every checkpoint, depending on the probability and the impact.