SlideShare a Scribd company logo

Give Your Company the Competitive Edge by Means of an IT Audit

EES Africa (Pty) Ltd
EES Africa (Pty) Ltd

With increasing technological developments and competition, companies are looking at ways to enhance and optimise their information technology (IT) systems and technical infrastructure. An information technology audit, also referred to as a technical infrastructure audit, is an invaluable process to undertake to accomplish this. It examines IT governance and how a company’s IT environment performs against best practice and emerging, leading edge technology. It does this by scrutinising information systems, their inputs, outputs and processing, capabilities and performance

BusinessTechnology
1 of 4
Download to read offline
WHITEPAPER GIVE YOUR COMPANY THE COMPETITIVE EDGE BY MEANS OF AN IT AUDIT By Thembi Lebese, Operations Analyst, EES Africa (Pty) Ltd With increasing technological developments and competition, companies are looking at ways to enhance and optimise their information technology (IT) systems and technical infrastructure. An information technology audit, also referred to as a technical infrastructure audit, is an invaluable process to undertake to accomplish this.
ABOUT EES: Established in 2001, EES Africa (Pty) Ltd specialises in the integration of multiple system infrastructure including ICT, Data Centres, Audio Visual, Life Safety, Security and Building Automation Systems. As an ISO 9001:2008 certified company, our vision is to be Africa’s management, engineering and auditing professional service provider of choice. The EES Value Proposition focuses on translating technology into tangible delivera- bles for clients through the experience of a talented team of Engineering and ICT Consultants and Project Managers. With offices in Cape Town, Johannesburg and Stellenbosch, EES operates predominantly in the Renewable Energy, Oil & Gas, Fi- nancial Services, Infrastructure, Utilities, Telecoms and Mining sectors. CONTENTS Page 2 Introduction Page 2 The Audit Procedure Page 2 Planning Page 2 Organising Page 2 Fieldwork Page 2 Reporting Page 3 Code of Ethics and Standards of Conduct Page 3 Conclusion Page 3 References I MANAGEMENT I ENGINEERING I AUDITING I www.eeslive.com 1 EES Cape Town office: G11 Silverberg Terrace 3 Silverwood Close Steenberg Office Park Cape Town 7945 PO Box 31322, Tokai 7966 Western Cape, South Africa Email: info@eeslive.com Tel: +27 (0)21 702 8340 Fax: +27 (0) 86 532 3532 EES Johannesburg office: Unit 8, West Block Loft Offices, First Floor, The Zone Phase II, 26 Cradock Avenue, Rosebank, 2186 PO Box 31322, Tokai 7966 Western Cape, South Africa Email: info@eeslive.com Tel: +27 (0)10 590 6270 Fax: +27 (0) 86 532 3532 EES Stellenbosch office: 18 Tegno Road Techno Park Stellenbosch 7599 PO Box 31322, Tokai 7966 Western Cape, South Africa Email: info@eeslive.com Tel: +27 (0)21 200 5939 Fax: +27 (0) 86 532 3532
Introduction With increasing technological developments and compe- tition, companies are looking at ways to enhance and optimise their information technology (IT) systems and technical infrastructure. An information technology au- dit, also referred to as a technical infrastructure audit, is an invaluable process to undertake to accomplish this. It examines IT governance and how a company’s IT en- vironment performs against best practice and emerging, leading edge technology. It does this by scrutinising in- formation systems, their inputs, outputs and processing, capabilities and performance. The IT or technical infrastructure audit: • Looks at ways in which a company’s technical infrastructure can be improved and updated in order to optimise productivity and gain a competitive advantage. • Assesses whether an organisation’s current technical infrastructure is according to standard. Auditors must follow auditing standards which are set be an international body, International Standards of Auditing (ISA). The ISA was revised and redrafted in February 2009. If a company wants to be certified for an undertaking or project, the organisation can then present an objective, accurate report to pro spective clients. • Mitigates potential technical risks. • Secures the organisation’s IT environment and safeguards confidential company information. • Ensures budgets are adhered to and business is done within the given timeframe. IT projects often overrun budgets or do not run according to schedule. It is beneficial to know why this occurs and how it can be prevented. For example, does the organisation need to improve processes, or are there certain people that need to be employed? It also identifies ways in which costs can be reduced. • Enables planning for the future by, for example, identifying when technology upgrades will be required and scheduling licensing and renewals. • Sees to it that technology initiatives are in sync with business goals, and assists in compilation of business strategies and support there-of. Unlike a financial audit, the IT or technical infrastructure audit is not a legal requirement, but is undertaken due to the benefits outlined above. It is advisable for the audit to be conducted by an external party to the organisation, as an independent party should have an objective view and therefore conducts the audit in a fair and profes- sional manner. It also ensures there is no possibility of internal parties in the company exerting any influence with regards to the outcome of the audit. GIVE YOUR COMPANY THE COMPETITIVE EDGE BY MEANS OF AN IT AUDIT April 2014 The Audit Procedure All auditors follow a specific process. The audit procedure is usually draft- ed by the party conducting the audit. Once it has completed the audit, it presents a report explaining its methodology and provides recommenda- tions drawn from the work. An example of a standard audit procedure that needs to be followed is found below: Planning The audit team is formed, gains an understanding of the reasons for the audit, and identifies its objectives. Data that can be used in the planning phase includes information from previously conducted audits, internet sites and other organisational documents. Sources may include, but are not lim- ited to, a risk assessment, internal and external evaluations and manage- ment guidance. Organising The audit team prepares a detailed audit plan and develops a preliminary audit program. It prepares any necessary administrative documentation and other requirements needed for the audit. It processes and identifies the various types of information and documentation required from the client, which will generally include organisational charts, job descriptions and rel- evant reports. Fieldwork This stage involves executing the procedures described in the scope docu- ments. The duration of the audit will vary depending on the scope and the requirements, the availability of labour as well as other resources required for the audit. During fieldwork, the auditor should identify, analyse, evalu- ate and document sufficient, reliable, relevant and useful information to achieve the audit objectives. The evidence gathered by the auditor will be documented in the working papers and used as the basis for the conclu- sions made and the results of the audit. The auditor must discuss significant findings with the audit team in order to find solutions to resolve any prob- lems related to the findings. Reporting The activities conducted during the reporting phase include: • Preparing a Draft Audit Report; • Discussing proposed changes with the appropriate level of management; • Preparing a Final Audit Report; and • Distributing the Final Audit Report to the audit team and client. The reports should include the audit objectives, the scope of audit work performed, an overview of the business or activity, conclusions regarding findings and observations, and recommendations to management to ad- dress any issues found. Recommendations should be included in the final section of the report. They should include information on shortfalls and risks, and suggestions as to ongoing improvement for the client. The reports should also acknowl- edge when satisfactory performance is found. I MANAGEMENT I ENGINEERING I AUDITING I I MANAGEMENT I ENGINEERING I AUDITING I www.eeslive.com 2
GIVE YOUR COMPANY THE COMPETITIVE EDGE BY MEANS OF AN IT AUDIT April 2014 I MANAGEMENT I ENGINEERING I AUDITING I I MANAGEMENT I ENGINEERING I AUDITING I www.eeslive.com 3 Code of Ethics and Standards of Conduct Integral to an audit of technical infrastructure is a Code of Ethics and Standards of Conduct. The following Code of Ethics needs to be adhered to at all times: • Integrity - The integrity of auditors establishes trust and provides the basis for reliance on their judgment. • Objectivity - Auditors exhibit the highest professional objectivity in gathering, evaluating and communicating information. Auditors are not unduly influenced by their own interests or others in forming judgments. • Confidentiality - Auditors respect the value and ownership of information they receive and do not disclose information without appropriate authority unless there is a legal or professional obligation to do so. • Competency - Auditors apply knowledge, skills and experience needed. The audit also needs to adhere to the following Stand- ards of Conduct: • Service - Preserve a commitment to carry out all responsibilities with an attitude of service towards the client while maintaining a sincere and dignified attitude. • Excellence - Uphold a high standard of service and a commitment to quality in performing all projects and assignments. • Leadership - Provide noteworthy examples which emphasise high ethical and moral standards. • Professionalism - Conduct business in a manner that reflects favourably on the client. Conclusion In an increasingly competitive environment organisations are looking to optimise the performance of their IT sys- tems and technical infrastructure. The IT or technical in- frastructure audit is today part of a strategic and cultural shift in IT governance that, when implemented correctly, can help companies better utilise technology assets and enhance a company’s efficiency and productivity. Furthermore, these audits are being conducted increas- ingly, as regulatory compliance, risk management and IT security become higher corporate priorities. They ensure that information assets are safeguarded and data integ- rity is maintained. Written by Thembi Lebese Operations Analyst, EES Africa (Pty) Ltd Tel +27 (0)10 590 6270, Email info@eeslive.com Thembi worked as an Analyst Developer in the Telecommunications Industry for 2 years before joining EES as Operations Analyst. She has experience in various organisational functional areas, infrastructure technologies, business processes within IT as well as development tools related to Enterprise Resource Planning. Qualifications: - BCom (Business Information Systems) from the University of Venda Additional Certificates: - PL/SQL Training - OBIEE Training The evaluation of the audit findings determines if the IT systems are oper- ating in a manner that will assist the organisation in achieving its strategic objectives. It assists the company in carrying out client projects according to budget and on schedule, and provides it with recommendations regard- ing future planning. It is the responsibility of the company which has undergone the audit to implement the suggested actions in order to indeed improve their techni- cal infrastructure and consistently maintain a high level of performance. References Code of Ethics. (2013, June 12). Retrieved from http://www.iia.org.uk/: http://www.iia.org.uk/resources/global-guidance/code-of-ethics/ ISA 230 Audit Documentation ISA 320 Materiality in planning and performing an audit PLANNING Gain understanding of the Audit AUDITREPORT Conduct meetings to establish Audit team Gather necessary information related to the Audit Prepare necessary documentation Organise the Audit and prepare Audit program Identify necessary information needed from the client Make necessary changes to scope and finalise requirements Executing the procedures described in the scope documents Auditor should identify, analyse, evaluate and document sufficient, reliable and useful information to achieve the audit objectives Prepare final Audit report Issue final Audit report START END

Recommended

Technology audit by Magdy El messiry
Technology audit by Magdy El messiryTechnology audit by Magdy El messiry
Technology audit by Magdy El messiry
Magdy El Messiry
 
Pmi Tvo 030508
Pmi Tvo 030508Pmi Tvo 030508
Pmi Tvo 030508
Craig Hockenbrough
 
Val it 2.0
Val it 2.0Val it 2.0
Val it 2.0
Vishal Sharma
 
Evolving role of internal auditing function
Evolving role of internal auditing functionEvolving role of internal auditing function
Evolving role of internal auditing function
Debashis Gupta
 
Examining Audit Quality, Common Engagement Deficiencies and the Importance of...
Examining Audit Quality, Common Engagement Deficiencies and the Importance of...Examining Audit Quality, Common Engagement Deficiencies and the Importance of...
Examining Audit Quality, Common Engagement Deficiencies and the Importance of...
International Federation of Accountants
 
Operational audit
Operational auditOperational audit
Operational audit
Abdoulaye M Yansane
 
Spire Brief - Risk Consulting
Spire Brief - Risk ConsultingSpire Brief - Risk Consulting
Spire Brief - Risk Consulting
Prashant Jain
 
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsInternal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Nimonik
 

Recommended

Technology audit by Magdy El messiry
Technology audit by Magdy El messiryTechnology audit by Magdy El messiry
Technology audit by Magdy El messiry
Magdy El Messiry
 
Pmi Tvo 030508
Pmi Tvo 030508Pmi Tvo 030508
Pmi Tvo 030508
Craig Hockenbrough
 
Val it 2.0
Val it 2.0Val it 2.0
Val it 2.0
Vishal Sharma
 
Evolving role of internal auditing function
Evolving role of internal auditing functionEvolving role of internal auditing function
Evolving role of internal auditing function
Debashis Gupta
 
Examining Audit Quality, Common Engagement Deficiencies and the Importance of...
Examining Audit Quality, Common Engagement Deficiencies and the Importance of...Examining Audit Quality, Common Engagement Deficiencies and the Importance of...
Examining Audit Quality, Common Engagement Deficiencies and the Importance of...
International Federation of Accountants
 
Operational audit
Operational auditOperational audit
Operational audit
Abdoulaye M Yansane
 
Spire Brief - Risk Consulting
Spire Brief - Risk ConsultingSpire Brief - Risk Consulting
Spire Brief - Risk Consulting
Prashant Jain
 
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsInternal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Nimonik
 
Internal Audit Strategic Framework
Internal Audit Strategic FrameworkInternal Audit Strategic Framework
Internal Audit Strategic Framework
Jeremy Cheng
 
Operatiional Audit
Operatiional AuditOperatiional Audit
Operatiional Audit
Malay Paul
 
Presentation on the Proposed Technology-related Revisions to the Code
Presentation on the Proposed Technology-related Revisions to the CodePresentation on the Proposed Technology-related Revisions to the Code
Presentation on the Proposed Technology-related Revisions to the Code
International Federation of Accountants
 
IT value Frameworks- VAL-IT COBIT 5 and KPMG
IT value Frameworks- VAL-IT COBIT 5 and KPMGIT value Frameworks- VAL-IT COBIT 5 and KPMG
IT value Frameworks- VAL-IT COBIT 5 and KPMG
Shwetha Bhat
 
Introduction to Val IT
Introduction to Val ITIntroduction to Val IT
Introduction to Val IT
Varuna Harshana
 
Process Audit and ISO
Process Audit and ISOProcess Audit and ISO
Process Audit and ISO
Sadafhazel
 
Chap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseChap1 2007 Cisa Review Course
Chap1 2007 Cisa Review Course
Desmond Devendran
 
Ivi external briefing_pack_v.aim
Ivi external briefing_pack_v.aimIvi external briefing_pack_v.aim
Ivi external briefing_pack_v.aim
AIMIreland
 
Modern Finance Tour London May 2016
Modern Finance Tour London May 2016Modern Finance Tour London May 2016
Modern Finance Tour London May 2016
BlackLine
 
Internal Audit
Internal AuditInternal Audit
Internal Audit
Jami Martin
 
Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...
Support for Improvement in Governance and Management SIGMA
 
Internal auditing
Internal auditingInternal auditing
Internal auditing
Shach Faisal
 
Key considerations for your internal audit plan
Key considerations for your internal audit planKey considerations for your internal audit plan
Key considerations for your internal audit plan
essbaih
 
Operational Auditing
Operational AuditingOperational Auditing
Operational Auditing
ahmad bassiouny
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal Audit
ArmeniaFED
 
Introduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and TechniquesIntroduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and Techniques
mack19921
 
Performing Audits Efficiently and Expanding Service Offerings: Global and Loc...
Performing Audits Efficiently and Expanding Service Offerings: Global and Loc...Performing Audits Efficiently and Expanding Service Offerings: Global and Loc...
Performing Audits Efficiently and Expanding Service Offerings: Global and Loc...
International Federation of Accountants
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
Letzconsult.com
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit department
Salih Islam
 
Bill Haser, Vice President & CIO at Tenneco - Managing the IT transformation
Bill Haser, Vice President & CIO at Tenneco - Managing the IT transformationBill Haser, Vice President & CIO at Tenneco - Managing the IT transformation
Bill Haser, Vice President & CIO at Tenneco - Managing the IT transformation
Global Business Events
 
Technological Barriers to Implementing Smart Grids in South African Cities
Technological Barriers to Implementing Smart Grids in South African CitiesTechnological Barriers to Implementing Smart Grids in South African Cities
Technological Barriers to Implementing Smart Grids in South African Cities
EES Africa (Pty) Ltd
 
Africa's Industrial Scenario-Weighing up the Opportunities and Challenges
Africa's Industrial Scenario-Weighing up the Opportunities and ChallengesAfrica's Industrial Scenario-Weighing up the Opportunities and Challenges
Africa's Industrial Scenario-Weighing up the Opportunities and Challenges
EES Africa (Pty) Ltd
 

More Related Content

What's hot

Operatiional Audit
Operatiional AuditOperatiional Audit
Operatiional Audit
Malay Paul
 

What's hot (20)

Internal Audit Strategic Framework
Internal Audit Strategic FrameworkInternal Audit Strategic Framework
Internal Audit Strategic Framework
 
Operatiional Audit
Operatiional AuditOperatiional Audit
Operatiional Audit
 
Presentation on the Proposed Technology-related Revisions to the Code
Presentation on the Proposed Technology-related Revisions to the CodePresentation on the Proposed Technology-related Revisions to the Code
Presentation on the Proposed Technology-related Revisions to the Code
 
IT value Frameworks- VAL-IT COBIT 5 and KPMG
IT value Frameworks- VAL-IT COBIT 5 and KPMGIT value Frameworks- VAL-IT COBIT 5 and KPMG
IT value Frameworks- VAL-IT COBIT 5 and KPMG
 
Introduction to Val IT
Introduction to Val ITIntroduction to Val IT
Introduction to Val IT
 
Process Audit and ISO
Process Audit and ISOProcess Audit and ISO
Process Audit and ISO
 
Chap1 2007 Cisa Review Course
Chap1 2007 Cisa Review CourseChap1 2007 Cisa Review Course
Chap1 2007 Cisa Review Course
 
Ivi external briefing_pack_v.aim
Ivi external briefing_pack_v.aimIvi external briefing_pack_v.aim
Ivi external briefing_pack_v.aim
 
Modern Finance Tour London May 2016
Modern Finance Tour London May 2016Modern Finance Tour London May 2016
Modern Finance Tour London May 2016
 
Internal Audit
Internal AuditInternal Audit
Internal Audit
 
Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...
 
Internal auditing
Internal auditingInternal auditing
Internal auditing
 
Key considerations for your internal audit plan
Key considerations for your internal audit planKey considerations for your internal audit plan
Key considerations for your internal audit plan
 
Operational Auditing
Operational AuditingOperational Auditing
Operational Auditing
 
The Role of Internal Audit
The Role of Internal AuditThe Role of Internal Audit
The Role of Internal Audit
 
Introduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and TechniquesIntroduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and Techniques
 
Performing Audits Efficiently and Expanding Service Offerings: Global and Loc...
Performing Audits Efficiently and Expanding Service Offerings: Global and Loc...Performing Audits Efficiently and Expanding Service Offerings: Global and Loc...
Performing Audits Efficiently and Expanding Service Offerings: Global and Loc...
 
Internal audit ppt
Internal audit pptInternal audit ppt
Internal audit ppt
 
The role of internal audit department
The role of internal audit departmentThe role of internal audit department
The role of internal audit department
 
Bill Haser, Vice President & CIO at Tenneco - Managing the IT transformation
Bill Haser, Vice President & CIO at Tenneco - Managing the IT transformationBill Haser, Vice President & CIO at Tenneco - Managing the IT transformation
Bill Haser, Vice President & CIO at Tenneco - Managing the IT transformation
 

Viewers also liked

Viewers also liked (9)

Technological Barriers to Implementing Smart Grids in South African Cities
Technological Barriers to Implementing Smart Grids in South African CitiesTechnological Barriers to Implementing Smart Grids in South African Cities
Technological Barriers to Implementing Smart Grids in South African Cities
 
Africa's Industrial Scenario-Weighing up the Opportunities and Challenges
Africa's Industrial Scenario-Weighing up the Opportunities and ChallengesAfrica's Industrial Scenario-Weighing up the Opportunities and Challenges
Africa's Industrial Scenario-Weighing up the Opportunities and Challenges
 
Carrying your Organisation and Technology into the Next Decade
Carrying your Organisation and Technology into the Next DecadeCarrying your Organisation and Technology into the Next Decade
Carrying your Organisation and Technology into the Next Decade
 
Biomass - A Crucial Renewable Energy Source if Generated Correctly
Biomass - A Crucial Renewable Energy Source if Generated CorrectlyBiomass - A Crucial Renewable Energy Source if Generated Correctly
Biomass - A Crucial Renewable Energy Source if Generated Correctly
 
Ageing and public health importance
Ageing and public health importanceAgeing and public health importance
Ageing and public health importance
 
Proposed Increase in South Africa's Solar Renewable Energy Will Lead to Posit...
Proposed Increase in South Africa's Solar Renewable Energy Will Lead to Posit...Proposed Increase in South Africa's Solar Renewable Energy Will Lead to Posit...
Proposed Increase in South Africa's Solar Renewable Energy Will Lead to Posit...
 
With the evolution of technology, a comprehensive mobility strategy is impera...
With the evolution of technology, a comprehensive mobility strategy is impera...With the evolution of technology, a comprehensive mobility strategy is impera...
With the evolution of technology, a comprehensive mobility strategy is impera...
 
An Integrated Security System Optimises Global Port Security
An Integrated Security System Optimises Global Port SecurityAn Integrated Security System Optimises Global Port Security
An Integrated Security System Optimises Global Port Security
 
Sustainable Solar Power-The Solution to Providing Energy for Low Cost Housing
Sustainable Solar Power-The Solution to Providing Energy for Low Cost HousingSustainable Solar Power-The Solution to Providing Energy for Low Cost Housing
Sustainable Solar Power-The Solution to Providing Energy for Low Cost Housing
 

Similar to Give Your Company the Competitive Edge by Means of an IT Audit

Management model for exploratory investment in IT
Management model for exploratory investment in IT Management model for exploratory investment in IT
Management model for exploratory investment in IT
WGroup
 
CobiT, Val IT & Balanced Scorecards
CobiT, Val IT & Balanced ScorecardsCobiT, Val IT & Balanced Scorecards
CobiT, Val IT & Balanced Scorecards
Michael Sim
 
Ibrahim alamri cv
Ibrahim alamri cvIbrahim alamri cv
Ibrahim alamri cv
Alamer Omani
 
EES White Paper Project Management of IT Moves LR
EES White Paper Project Management of IT Moves LREES White Paper Project Management of IT Moves LR
EES White Paper Project Management of IT Moves LR
Vicky Killian
 
Lynes Diagrams
Lynes DiagramsLynes Diagrams
Lynes Diagrams
rlynes
 

Similar to Give Your Company the Competitive Edge by Means of an IT Audit (20)

Technology audit
Technology auditTechnology audit
Technology audit
 
Info-Tech Research Group & Boardroom Events Value Prop Presentation
Info-Tech Research Group & Boardroom Events Value Prop PresentationInfo-Tech Research Group & Boardroom Events Value Prop Presentation
Info-Tech Research Group & Boardroom Events Value Prop Presentation
 
Management model for exploratory investment in IT
Management model for exploratory investment in IT Management model for exploratory investment in IT
Management model for exploratory investment in IT
 
Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)Control and audit of information System (hendri eka saputra)
Control and audit of information System (hendri eka saputra)
 
It Governance Methodology Cox
It Governance Methodology CoxIt Governance Methodology Cox
It Governance Methodology Cox
 
CobiT, Val IT & Balanced Scorecards
CobiT, Val IT & Balanced ScorecardsCobiT, Val IT & Balanced Scorecards
CobiT, Val IT & Balanced Scorecards
 
Ibrahim alamri cv 20199 new
Ibrahim alamri cv 20199 newIbrahim alamri cv 20199 new
Ibrahim alamri cv 20199 new
 
Ibrahim alamri cv 20
Ibrahim alamri cv 20Ibrahim alamri cv 20
Ibrahim alamri cv 20
 
Ibrahim alamri cv
Ibrahim alamri cvIbrahim alamri cv
Ibrahim alamri cv
 
EES White Paper Project Management of IT Moves LR
EES White Paper Project Management of IT Moves LREES White Paper Project Management of IT Moves LR
EES White Paper Project Management of IT Moves LR
 
Auditing Systems Development
Auditing Systems DevelopmentAuditing Systems Development
Auditing Systems Development
 
Jeffery Leu | Asset Management - Conserve Cash as well as Boost Productivity
Jeffery Leu | Asset Management - Conserve Cash as well as Boost ProductivityJeffery Leu | Asset Management - Conserve Cash as well as Boost Productivity
Jeffery Leu | Asset Management - Conserve Cash as well as Boost Productivity
 
Lynes Diagrams
Lynes DiagramsLynes Diagrams
Lynes Diagrams
 
Governance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGovernance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 Framework
 
An IT Governance program
An IT Governance programAn IT Governance program
An IT Governance program
 
TASSCC Presentation.ppt
TASSCC Presentation.pptTASSCC Presentation.ppt
TASSCC Presentation.ppt
 
Re-building Finance for a Post-COVID World
Re-building Finance for a Post-COVID WorldRe-building Finance for a Post-COVID World
Re-building Finance for a Post-COVID World
 
Gaining and Maintaining IT & Business Alignment.pptx
Gaining and Maintaining IT & Business Alignment.pptxGaining and Maintaining IT & Business Alignment.pptx
Gaining and Maintaining IT & Business Alignment.pptx
 
Executive's Handbook on IT Strategy and Governance
Executive's Handbook on IT Strategy and GovernanceExecutive's Handbook on IT Strategy and Governance
Executive's Handbook on IT Strategy and Governance
 
MAKING SENSE OF IT GOVERNANCE
MAKING SENSE OF IT GOVERNANCEMAKING SENSE OF IT GOVERNANCE
MAKING SENSE OF IT GOVERNANCE
 

Recently uploaded

Pre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxPre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptx
Roofing Contractor
 
GUWAHATI 💋 Call Girl 9827461493 Call Girls in Escort service book now
GUWAHATI 💋 Call Girl 9827461493 Call Girls in Escort service book nowGUWAHATI 💋 Call Girl 9827461493 Call Girls in Escort service book now
GUWAHATI 💋 Call Girl 9827461493 Call Girls in Escort service book now
kapoorjyoti4444
 
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai KuwaitThe Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
daisycvs
 
Only Cash On Delivery Call Girls In Sikandarpur Gurgaon ❤️8448577510 ⊹Escorts...
Only Cash On Delivery Call Girls In Sikandarpur Gurgaon ❤️8448577510 ⊹Escorts...Only Cash On Delivery Call Girls In Sikandarpur Gurgaon ❤️8448577510 ⊹Escorts...
Only Cash On Delivery Call Girls In Sikandarpur Gurgaon ❤️8448577510 ⊹Escorts...
lizamodels9
 
KALYANI 💋 Call Girl 9827461493 Call Girls in Escort service book now
KALYANI 💋 Call Girl 9827461493 Call Girls in Escort service book nowKALYANI 💋 Call Girl 9827461493 Call Girls in Escort service book now
KALYANI 💋 Call Girl 9827461493 Call Girls in Escort service book now
kapoorjyoti4444
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
uneakwhite
 

Recently uploaded (20)

Arti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdfArti Languages Pre Seed Teaser Deck 2024.pdf
Arti Languages Pre Seed Teaser Deck 2024.pdf
 
Pre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptxPre Engineered Building Manufacturers Hyderabad.pptx
Pre Engineered Building Manufacturers Hyderabad.pptx
 
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
 
GUWAHATI 💋 Call Girl 9827461493 Call Girls in Escort service book now
GUWAHATI 💋 Call Girl 9827461493 Call Girls in Escort service book nowGUWAHATI 💋 Call Girl 9827461493 Call Girls in Escort service book now
GUWAHATI 💋 Call Girl 9827461493 Call Girls in Escort service book now
 
Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1
 
Cannabis Legalization World Map: 2024 Updated
Cannabis Legalization World Map: 2024 UpdatedCannabis Legalization World Map: 2024 Updated
Cannabis Legalization World Map: 2024 Updated
 
Nanded Call Girl Just Call 8084732287 Top Class Call Girl Service Available
Nanded Call Girl Just Call 8084732287 Top Class Call Girl Service AvailableNanded Call Girl Just Call 8084732287 Top Class Call Girl Service Available
Nanded Call Girl Just Call 8084732287 Top Class Call Girl Service Available
 
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai KuwaitThe Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
 
Berhampur Call Girl Just Call 8084732287 Top Class Call Girl Service Available
Berhampur Call Girl Just Call 8084732287 Top Class Call Girl Service AvailableBerhampur Call Girl Just Call 8084732287 Top Class Call Girl Service Available
Berhampur Call Girl Just Call 8084732287 Top Class Call Girl Service Available
 
Berhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Berhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDINGBerhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
Berhampur 70918*19311 CALL GIRLS IN ESCORT SERVICE WE ARE PROVIDING
 
Falcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business GrowthFalcon Invoice Discounting: Empowering Your Business Growth
Falcon Invoice Discounting: Empowering Your Business Growth
 
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
Lucknow Housewife Escorts by Sexy Bhabhi Service 8250092165
 
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
Escorts in Nungambakkam Phone 8250092165 Enjoy 24/7 Escort Service Enjoy Your...
 
Only Cash On Delivery Call Girls In Sikandarpur Gurgaon ❤️8448577510 ⊹Escorts...
Only Cash On Delivery Call Girls In Sikandarpur Gurgaon ❤️8448577510 ⊹Escorts...Only Cash On Delivery Call Girls In Sikandarpur Gurgaon ❤️8448577510 ⊹Escorts...
Only Cash On Delivery Call Girls In Sikandarpur Gurgaon ❤️8448577510 ⊹Escorts...
 
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAIGetting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
Getting Real with AI - Columbus DAW - May 2024 - Nick Woo from AlignAI
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024
 
JAJPUR CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN JAJPUR ESCORTS
JAJPUR CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN JAJPUR ESCORTSJAJPUR CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN JAJPUR ESCORTS
JAJPUR CALL GIRL ❤ 82729*64427❤ CALL GIRLS IN JAJPUR ESCORTS
 
KALYANI 💋 Call Girl 9827461493 Call Girls in Escort service book now
KALYANI 💋 Call Girl 9827461493 Call Girls in Escort service book nowKALYANI 💋 Call Girl 9827461493 Call Girls in Escort service book now
KALYANI 💋 Call Girl 9827461493 Call Girls in Escort service book now
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
 
Putting the SPARK into Virtual Training.pptx
Putting the SPARK into Virtual Training.pptxPutting the SPARK into Virtual Training.pptx
Putting the SPARK into Virtual Training.pptx
 

Give Your Company the Competitive Edge by Means of an IT Audit

  • 1. WHITEPAPER GIVE YOUR COMPANY THE COMPETITIVE EDGE BY MEANS OF AN IT AUDIT By Thembi Lebese, Operations Analyst, EES Africa (Pty) Ltd With increasing technological developments and competition, companies are looking at ways to enhance and optimise their information technology (IT) systems and technical infrastructure. An information technology audit, also referred to as a technical infrastructure audit, is an invaluable process to undertake to accomplish this.
  • 2. ABOUT EES: Established in 2001, EES Africa (Pty) Ltd specialises in the integration of multiple system infrastructure including ICT, Data Centres, Audio Visual, Life Safety, Security and Building Automation Systems. As an ISO 9001:2008 certified company, our vision is to be Africa’s management, engineering and auditing professional service provider of choice. The EES Value Proposition focuses on translating technology into tangible delivera- bles for clients through the experience of a talented team of Engineering and ICT Consultants and Project Managers. With offices in Cape Town, Johannesburg and Stellenbosch, EES operates predominantly in the Renewable Energy, Oil & Gas, Fi- nancial Services, Infrastructure, Utilities, Telecoms and Mining sectors. CONTENTS Page 2 Introduction Page 2 The Audit Procedure Page 2 Planning Page 2 Organising Page 2 Fieldwork Page 2 Reporting Page 3 Code of Ethics and Standards of Conduct Page 3 Conclusion Page 3 References I MANAGEMENT I ENGINEERING I AUDITING I www.eeslive.com 1 EES Cape Town office: G11 Silverberg Terrace 3 Silverwood Close Steenberg Office Park Cape Town 7945 PO Box 31322, Tokai 7966 Western Cape, South Africa Email: info@eeslive.com Tel: +27 (0)21 702 8340 Fax: +27 (0) 86 532 3532 EES Johannesburg office: Unit 8, West Block Loft Offices, First Floor, The Zone Phase II, 26 Cradock Avenue, Rosebank, 2186 PO Box 31322, Tokai 7966 Western Cape, South Africa Email: info@eeslive.com Tel: +27 (0)10 590 6270 Fax: +27 (0) 86 532 3532 EES Stellenbosch office: 18 Tegno Road Techno Park Stellenbosch 7599 PO Box 31322, Tokai 7966 Western Cape, South Africa Email: info@eeslive.com Tel: +27 (0)21 200 5939 Fax: +27 (0) 86 532 3532
  • 3. Introduction With increasing technological developments and compe- tition, companies are looking at ways to enhance and optimise their information technology (IT) systems and technical infrastructure. An information technology au- dit, also referred to as a technical infrastructure audit, is an invaluable process to undertake to accomplish this. It examines IT governance and how a company’s IT en- vironment performs against best practice and emerging, leading edge technology. It does this by scrutinising in- formation systems, their inputs, outputs and processing, capabilities and performance. The IT or technical infrastructure audit: • Looks at ways in which a company’s technical infrastructure can be improved and updated in order to optimise productivity and gain a competitive advantage. • Assesses whether an organisation’s current technical infrastructure is according to standard. Auditors must follow auditing standards which are set be an international body, International Standards of Auditing (ISA). The ISA was revised and redrafted in February 2009. If a company wants to be certified for an undertaking or project, the organisation can then present an objective, accurate report to pro spective clients. • Mitigates potential technical risks. • Secures the organisation’s IT environment and safeguards confidential company information. • Ensures budgets are adhered to and business is done within the given timeframe. IT projects often overrun budgets or do not run according to schedule. It is beneficial to know why this occurs and how it can be prevented. For example, does the organisation need to improve processes, or are there certain people that need to be employed? It also identifies ways in which costs can be reduced. • Enables planning for the future by, for example, identifying when technology upgrades will be required and scheduling licensing and renewals. • Sees to it that technology initiatives are in sync with business goals, and assists in compilation of business strategies and support there-of. Unlike a financial audit, the IT or technical infrastructure audit is not a legal requirement, but is undertaken due to the benefits outlined above. It is advisable for the audit to be conducted by an external party to the organisation, as an independent party should have an objective view and therefore conducts the audit in a fair and profes- sional manner. It also ensures there is no possibility of internal parties in the company exerting any influence with regards to the outcome of the audit. GIVE YOUR COMPANY THE COMPETITIVE EDGE BY MEANS OF AN IT AUDIT April 2014 The Audit Procedure All auditors follow a specific process. The audit procedure is usually draft- ed by the party conducting the audit. Once it has completed the audit, it presents a report explaining its methodology and provides recommenda- tions drawn from the work. An example of a standard audit procedure that needs to be followed is found below: Planning The audit team is formed, gains an understanding of the reasons for the audit, and identifies its objectives. Data that can be used in the planning phase includes information from previously conducted audits, internet sites and other organisational documents. Sources may include, but are not lim- ited to, a risk assessment, internal and external evaluations and manage- ment guidance. Organising The audit team prepares a detailed audit plan and develops a preliminary audit program. It prepares any necessary administrative documentation and other requirements needed for the audit. It processes and identifies the various types of information and documentation required from the client, which will generally include organisational charts, job descriptions and rel- evant reports. Fieldwork This stage involves executing the procedures described in the scope docu- ments. The duration of the audit will vary depending on the scope and the requirements, the availability of labour as well as other resources required for the audit. During fieldwork, the auditor should identify, analyse, evalu- ate and document sufficient, reliable, relevant and useful information to achieve the audit objectives. The evidence gathered by the auditor will be documented in the working papers and used as the basis for the conclu- sions made and the results of the audit. The auditor must discuss significant findings with the audit team in order to find solutions to resolve any prob- lems related to the findings. Reporting The activities conducted during the reporting phase include: • Preparing a Draft Audit Report; • Discussing proposed changes with the appropriate level of management; • Preparing a Final Audit Report; and • Distributing the Final Audit Report to the audit team and client. The reports should include the audit objectives, the scope of audit work performed, an overview of the business or activity, conclusions regarding findings and observations, and recommendations to management to ad- dress any issues found. Recommendations should be included in the final section of the report. They should include information on shortfalls and risks, and suggestions as to ongoing improvement for the client. The reports should also acknowl- edge when satisfactory performance is found. I MANAGEMENT I ENGINEERING I AUDITING I I MANAGEMENT I ENGINEERING I AUDITING I www.eeslive.com 2
  • 4. GIVE YOUR COMPANY THE COMPETITIVE EDGE BY MEANS OF AN IT AUDIT April 2014 I MANAGEMENT I ENGINEERING I AUDITING I I MANAGEMENT I ENGINEERING I AUDITING I www.eeslive.com 3 Code of Ethics and Standards of Conduct Integral to an audit of technical infrastructure is a Code of Ethics and Standards of Conduct. The following Code of Ethics needs to be adhered to at all times: • Integrity - The integrity of auditors establishes trust and provides the basis for reliance on their judgment. • Objectivity - Auditors exhibit the highest professional objectivity in gathering, evaluating and communicating information. Auditors are not unduly influenced by their own interests or others in forming judgments. • Confidentiality - Auditors respect the value and ownership of information they receive and do not disclose information without appropriate authority unless there is a legal or professional obligation to do so. • Competency - Auditors apply knowledge, skills and experience needed. The audit also needs to adhere to the following Stand- ards of Conduct: • Service - Preserve a commitment to carry out all responsibilities with an attitude of service towards the client while maintaining a sincere and dignified attitude. • Excellence - Uphold a high standard of service and a commitment to quality in performing all projects and assignments. • Leadership - Provide noteworthy examples which emphasise high ethical and moral standards. • Professionalism - Conduct business in a manner that reflects favourably on the client. Conclusion In an increasingly competitive environment organisations are looking to optimise the performance of their IT sys- tems and technical infrastructure. The IT or technical in- frastructure audit is today part of a strategic and cultural shift in IT governance that, when implemented correctly, can help companies better utilise technology assets and enhance a company’s efficiency and productivity. Furthermore, these audits are being conducted increas- ingly, as regulatory compliance, risk management and IT security become higher corporate priorities. They ensure that information assets are safeguarded and data integ- rity is maintained. Written by Thembi Lebese Operations Analyst, EES Africa (Pty) Ltd Tel +27 (0)10 590 6270, Email info@eeslive.com Thembi worked as an Analyst Developer in the Telecommunications Industry for 2 years before joining EES as Operations Analyst. She has experience in various organisational functional areas, infrastructure technologies, business processes within IT as well as development tools related to Enterprise Resource Planning. Qualifications: - BCom (Business Information Systems) from the University of Venda Additional Certificates: - PL/SQL Training - OBIEE Training The evaluation of the audit findings determines if the IT systems are oper- ating in a manner that will assist the organisation in achieving its strategic objectives. It assists the company in carrying out client projects according to budget and on schedule, and provides it with recommendations regard- ing future planning. It is the responsibility of the company which has undergone the audit to implement the suggested actions in order to indeed improve their techni- cal infrastructure and consistently maintain a high level of performance. References Code of Ethics. (2013, June 12). Retrieved from http://www.iia.org.uk/: http://www.iia.org.uk/resources/global-guidance/code-of-ethics/ ISA 230 Audit Documentation ISA 320 Materiality in planning and performing an audit PLANNING Gain understanding of the Audit AUDITREPORT Conduct meetings to establish Audit team Gather necessary information related to the Audit Prepare necessary documentation Organise the Audit and prepare Audit program Identify necessary information needed from the client Make necessary changes to scope and finalise requirements Executing the procedures described in the scope documents Auditor should identify, analyse, evaluate and document sufficient, reliable and useful information to achieve the audit objectives Prepare final Audit report Issue final Audit report START END