{"id":5540,"date":"2012-07-02T10:17:06","date_gmt":"2012-07-02T10:17:06","guid":{"rendered":"http:\/\/mkdgconsulting.webartis.net\/?page_id=5540"},"modified":"2012-09-15T17:38:28","modified_gmt":"2012-09-15T17:38:28","slug":"informatics-audit","status":"publish","type":"page","link":"https:\/\/mkdg-audit.com\/en\/informatics-audit\/","title":{"rendered":"Informatics audit"},"content":{"rendered":"<div class=\"modern_img_frame modern_banner_regular\"><div class=\"img-preload\"><img data-src='https:\/\/mkdg-audit.com\/wp-content\/themes\/Karma\/framework\/extended\/timthumb\/timthumb.php?src=\/blogs.dir\/9\/files\/2012\/03\/sysinfo.jpg&amp;h=201&amp;w=703' alt='' class=\"attachment-fadeIn lazyload\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" \/><\/div><\/div><h2>Do you benefit from the best possible information system?<\/h2>\n<p style=\"text-align: justify;\">Our primary objective is to evaluate the adequacy of the controls conducted within the IT department at all levels, in order to make sure that we can rely on these controls to pursue our audit procedure using the following exhaustive approach:<\/p>\n<ul style=\"text-align: justify;\">\n<li>The segregation of tasks within the informatics organization;<\/li>\n<li>Maintenance operations on a set of applications;<\/li>\n<li>Operational activities in the IT environment;<\/li>\n<li>Management of the IT security;<\/li>\n<li>Management of the backups and the business continuity plan.<\/li>\n<\/ul>\n<p style=\"text-align: justify;\">The following themes correspond to internal control objectives that are to cover the principle risks linked to the usage of ERP:<\/p>\n<div class=\"one_half tt-column\"><\/p>\n<h3><strong>Technical infrastructure<\/strong><\/h3>\n<ul>\n<li>Revision of the security measures existing within the technical infrastructure;<\/li>\n<li><strong><\/strong>Software security of the operating system, the database and the network;<\/li>\n<li>\u00a0Physical security of the system;<\/li>\n<li>\u00a0 Backups and contingency plan;<\/li>\n<li>Resource protection: evaluation of the technological choices, intrusion tests, evaluation and assistance for the implementation of a system architecture and security policy;<\/li>\n<li>E-Commerce: a vast range of services linked to security and cryptography enabling the testing of the firewall\u2019s strength and to efficiently protect the transferral of payments as well as the sending of sensitive information through the Internet;<\/li>\n<li>Telecommunications and networks :\n<ul>\n<li>For telecom operators: analysis and improvement plan for the systems and processes linked to the handling of revenue streams and payment collection.<\/li>\n<li>For companies: analysis and optimization of the telecom infrastructure.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p>\n<\/div><div class=\"one_half_last tt-column\"><\/p>\n<h3><strong>Application security<br \/> <\/strong><\/h3>\n<ul>\n<li>Revision of the principles and procedures regarding application security;<\/li>\n<li>Identification and protection of ERP\u2019s critical transactions;<\/li>\n<li>Creation and adaptation of user profiles in line with the principles of task separation;<\/li>\n<li>Access monitoring;<\/li>\n<li>Maintenance and progress procedures.<\/li>\n<\/ul>\n<h3><strong>Control of the functional processes<br \/> <\/strong><\/h3>\n<ul>\n<li>Adequacy assessment of the risk controls as identified during the functional processes;<\/li>\n<li>Examination of the automatic control parameters in ERP;<\/li>\n<li>Implementation of specifically developed programmed controls;<\/li>\n<li>Monitoring of the manual controls as available in ERP and\/or those that have been tailor-made.<\/li>\n<\/ul>\n<p>\n<\/div><br class=\"clear\" \/><p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\nDo you benefit from the best possible information system?<br \/>\nOur primary objective is to evaluate the adequacy of the controls conducted within the IT department at all levels, in order to make sure that we can rely on these controls to pursue our audit procedure using the following exhaustive approach:<\/p>\n<p>The segregation of tasks within the informatics organization;<br \/>\nMaintenance operations on a set of applications;<br \/>\nOperational activities in the IT environment;<br \/>\nManagement of the IT security;<br \/>\nManagement of &#8230;<\/p>\n","protected":false},"author":10,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"open","ping_status":"open","template":"template_rightsidebar_horizontalnav.php","meta":{"footnotes":""},"class_list":["post-5540","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/mkdg-audit.com\/en\/wp-json\/wp\/v2\/pages\/5540","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mkdg-audit.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/mkdg-audit.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/mkdg-audit.com\/en\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/mkdg-audit.com\/en\/wp-json\/wp\/v2\/comments?post=5540"}],"version-history":[{"count":0,"href":"https:\/\/mkdg-audit.com\/en\/wp-json\/wp\/v2\/pages\/5540\/revisions"}],"wp:attachment":[{"href":"https:\/\/mkdg-audit.com\/en\/wp-json\/wp\/v2\/media?parent=5540"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}