 
The objective of this service is to obtain an independent assessment of information systems management and its risks, to reinforce the IT and business strategies of the company
Our service is based on the following values
|
||||||||||||||||||||||||
| • | Integrity |
| • | Service Attitude |
| • | Objectivity |
| • | Positive Focus |
| • | Continuity |
| • | Communication |
| • | Embracement of new ideas |
Our methodology combines IT Auditing Standards’ updating level at the international level with a practical and realistic point of view.
When we complete our services, in addition to the auditing report, your company will receive a report with advice on the improvement of the detected issues. A follow-up session is included to this report as part of our commitment with IT strategies alignment to support the business, improve service in the Systems Area and to reinforce information security culture.
This service will have a different profile depending on client’s requirements, namely:
Comprehensive auditing
Detailed review and evaluation of the application of Internal Control to Information Technologies, according to the following control points:
| • | Managerial |
| • | Systems development and maintenance |
| • | Operation |
| • | Applications |
| • | Technology |
Express diagnosis
General review of the application of Internal Control to the Systems Area, in which administration and work methods of the area, information security, effectiveness of operations as well as user satisfaction level are evaluated.
Security diagnosis
Review and evaluation of the Logic Security conditions established at the level of the Operating System, Database, Application Software, Productivity Software, Internet Applications, Customized Developments, among others.
Guided auditing
Review and evaluation of specific issues in the use of IT resources detected as critical. It is focused on identifying causes and solutions for specific IT problems singled out by your company, which are affecting business or IT strategies.