Understanding client's Business and Regulatory Environment.
- Identifying Key Processes and Applications.
- Planning, Scoping and budgeting assignments including resourcing.
- Understanding & Capturing Business Process Flow Diagram
- Risk Assessment, identification and Evaluation of Controls, capturing the same in Risk & Control Matrix.
- Designing Testing Strategy and execution of test plan.
- Evaluating the Deficiencies identified and Impact Analysis thereof
- IT Security Application Controls
- Business Process Audit
- Application System Audits
- Process and Control Design, and Assessment
- Program Management
To conduct IT General Control review, Change Management, Access Control, Business Continuity and Disaster Recovery, Handling of Sox Audit, database management, review of policies & procedures and compliance, control assessment, SDLC, Business process
- Should have Experience in doing SOX Audit along with IT General Controls Reviews, security and configuration reviews on the following types of technologies.
- Involved in doing the Business Process review for Sox clients which include travel, revenue and account payable process