IT General Controls Review


IT Audit processes within our modern business organisations are fast becoming essential elements of corporate governance and compliance requirements in order to meet industry and legal obligations. As IT systems support critical financial data which is reported to the Board, shareholders and/or regulators it is paramount that IT staff and Executives understand the risks and controls across their systems and processes.

The ability to identify areas of IT control weakness not only allows early rectification of issues but also reduces overall cost through providing a mechanism to improve IT processes in respect of business efficiency and management.

Vestinex assists our clients to evaluate their IT General Controls, for operational as well as financial systems (SOX requirements) by first understanding the Information Technology environment within our clients businesses and gaining an understanding of the business processes which are affected by those systems. We then conduct a high level risk assessment over the affected IT systems to identify any areas of weakness or lack of controls. We can then work with our clients to discuss these issues with Internal Auditors and other staff to ensure that risks are sufficiently controlled for the business without reducing operational efficiencies.