Today's IT audit world requires wide breadth and depth of technology skills that are seldom found in one resource. Accordingly, many organizations rely on the diversity and depth of skills that specialized or expensive consulting firms can provide. At BRASC, we can provide specialized resource that possesses technological skills within various specialties such as infrastructure and security, ERP systems, database management, UNIX, Windows, project management, application security, or business continuity. The range of IT Audit complimentary services include:
- IT Audit for SOX Compliance services
- Pre & Post Project / Program Implementation Reviews (Intense CAPEX Projects)
- Application Security & Control Audit services
Why work with BRASC? Our approach includes the following:
- Walk-through of each IT process, identify business and/or financial reporting risks, assess risk levels, assign control objectives and identify corresponding controls where applicable.
- Independently test each of the identified IT process areas and collect the appropriate evidence supporting the testing activities and subsequent control evaluation.
- Assess the operating effectiveness of each key control activity based on the test results and the supporting documentation.
- For all control or process failures we can assist with determining the required remediation activities to address the outstanding deficiencies and prioritize the identified remediation plans.