Project audit: A formal inquiry into any or all aspects of a project.
- Identifying problems earlier
- Clarifying performance/cost/schedule relationships
- Improving project performance
- Identifying future opportunities
- Evaluating performance of project team
- Reducing costs
- Informing client of project status/prospects
- Reconfirming feasibility of/commitment to project
QMS audit: Evaluating the available quality processes and mapping to the standards – ISO, CMMi.
- Phases of Audit
- Audit Planning schedule preparation
- Studying the existing processes
- Interviewing the stakeholders about the processes followed
- Norms for NC/ Observation
- Evidence collection
- Deliverables
- Audit Report
- Suggestions/ Recommendations for improvement
ISMS audit: Identifying and managing information security risks.
- Phases of Audit
- Audit Planning schedule preparation
- Customizing the available/ standard checklist
- Audit methodologies
- Norms for NC/ Observation
- Evidence collection
- Deliverables
- Audit Report
- Suggestions/ Recommendations for improvement
SOX audit: Ensuring the accuracy and correctness of the financial figures and other data reported in the financial statements.
- Phases of Audit
- Business process review
- Internal controls verification
- IT general control, review and verification
- IT application control review and verification
- Deliverables
- Gap analysis with severity and recommendations
Application audit: The application audit includes different control points such as administration, input, processing, outputs, security, disaster & recover plan and user support.
Types of Application audit:
- Functionality
- Vulnerability/ Security
- Performance
- User Acceptance
|
