In organizations where computer based information systems play a significant role in achieving business goals and critical success factors, the effectiveness of general management and controls exercised over these information systems is critical to the success of the organization. The prerequisites for effective management are appropriate plans, staffing structures, policies, standards, procedures, methods and controls within the IS environment. Without those, the risks of failure are greatly increased. In this framework, we assist companies in performing Ιnformation Systems and Controls Audit.
Application Controls Review - identification of the inherent risks of technology deployed in client's business processes and minimization of the company's exposure to such risks, by ensuring that the necessary controls and security are in place.
General Computer Controls - a review to assess the policies, standards, procedures, and general computer controls aimed at providing a secure and stable environment for the application systems running on various platforms within the company. General computer controls are defined as any IS control that falls into one of the following four categories but that is not specific to any particular application system:
• The implementation and monitoring of information security
• Controls over computer operations
• Controls over the acquisition, development and maintenance of systems
• Controls over information systems support.
Strong general computer controls constitute a prerequisite for the establishment of a reliable IS environment that effectively supports the business objectives of the company.