HA&W

Contact a Partner NOW!

Pay Your Invoice Here

Subscribe Here

Training Tips
  Information Technology Audit
 

Security and availability of a company's IT infrastructure has become a high-priority issue in executive suites and corporate boardrooms. Top management is looking to create an operating environment that effectively manages — and mitigates — risks.

IT managers are under pressure to accomplish more with their current infrastructure without increasing risk. However, the universe of risks grows with increased dependence on information systems outside your direct control (Internet, ASPs, and e-commerce). From controls in your financial reporting systems to key CRM and sales records to supply chain and logistics data, your company's information technology is a strategic asset that needs to be managed.

Is this your situation?

  • You need confidence in the quality of the information produced by your IT systems.
  • You need assistance in documenting or testing your internal controls over financial reporting.
  • You need an independent review of your control structure, including identification of weaknesses and possible design enhancements.
  • You rely on financial information from a third party and need independent assurance on that information.
  • Your organization provides services to a company and you've been asked to provide a SAS 70 report.
  • You are implementing—or have just implemented—a new IT system and want a review of the controls.
  • You are entering into a joint venture or other transaction and need due diligence on systems and controls.

We can help.

HA&W can help you focus on fundamental as well as emerging IT issues as you develop and execute plans to respond to stakeholder expectations. Our services are predicated on insights into how leading organizations prioritize their efforts to ensure that IT investments provide maximum security and risk mitigation in the most cost effective manner.

We routinely help our clients examine these and other challenges from a technology risk perspective:

  • Enterprise Security
  • Systems Controls and Effectiveness
  • Business Continuity Plans
  • Privacy and Data Control
  • Process Improvement
  • Change Management Controls
  • IT Strategy
  • IT Architecture Reviews
  • Project Reviews

We perform a wide range of control reviews to address management objectives. Our control reviews can address business process through application to technology infrastructure. Invariably, our reviews are in the context of business and/or audit risk. Not only do we seek to highlight significant exposures, but we also go the extra mile to recommend potential solutions for mitigating those exposures. Reviews of internal controls are an important element of our financial audit services. Our audit approach recognizes up front the importance of information systems and control structures in complex organizations. An assessment of key internal controls is tightly integrated into audit plans wherever efficient and appropriate.

Management of service organizations frequently desires an independent study and evaluation of controls for consideration by users of those services. Typically, these reviews result in service auditor reports consistent with Statements on Audit Standards (SAS) 70. With the growing number of Internet-based services, trusted third-party reporting is becoming increasingly useful, both for marketing support and end-user assurance.

Why should I hire HA&W?

HA&W helps clients achieve a balance between reliable performance and continuous improvement by understanding and managing the inherent risks of business processes. We work with clients to identify and prevent the potential process risks that may be introduced when changes are made in the organization, services, or technologies.

Our experienced professionals can help enhance the return on your Business Process Improvement initiatives, regardless of what they entail. Past projects include, but are not limited to the following:

  • Operational Performance Assessments
  • System Implementation Reviews
  • Business Processes Integration
  • Project Management Office Reviews
  • Special Accounting Projects

For more information about HA&W's IT Audit practice, contact David Parker (CPA, CISA, CIA).

 
For more information, call 404-892-9651 or send email to info@hawcpa.com. Copyright © HA&W, LLP. All Rights Reserved. Home | About Us | Services | Industries | Info Center | Careers | Client Area | Contact Us | Help | Site Map | Peer Review | Privacy Policy | Legal Disclaimer