Auditing is a powerful tool for IT governance. Based on hard facts, audit reports provide the management with an objective snpashot of the organization’s current situation, risk profile or over a defined issue.
IT audits shall be constructive for all stakeholders – management and auditees – in order to determine the right measures to improve the organization, optimize its risk profile and ensure compliance to regulations. It should also enable the auditees to communicate their perception of the situation and to report problems, opportunities and corrective measures needed without going through the traditional hierarchical reporting channels.
In the field of IT audit, we are active in the following areas: