IT Audit Outsourcing & Co-Sourcing
When performing IT Audits for Banks and Financial Services organizations, Sunera follows the work programs published by the Federal Financial Institutions Examination Council (FFIEC) to ensure your organization is adequately prepared for its regulatory examination. As our audit professionals are also well versed in the practices suggested by the Institute of Internal Auditors (IIA) and Information Systems Audit and Control Association (ISACA), you can be assured that the work will be performed with the proper understanding of governance, risk, compliance and control assessment techniques to adequately address the organization’s state of IT governance and controls.
Furthermore, we utilize COBIT, a risk-based, process-focused methodology to establish a thorough understanding of an Institution’s objectives, the risks that threaten those objectives, and the relationships between those risks and the Institution’s controls.
We utilize a phased approach to IT Audit. Our approach allows us to build momentum and synergy into each stage of the engagement. Each stage of the audit has been developed to provide a framework to deliver usable results. Our typical approach includes the following:
- IT process and risk assessment
- Testing of controls
- Assessing the effectiveness of the controls
- Determining appropriate remediation activities
Our Banking & Financial Institution IT Audit Program follows the eleven FFIEC IT Examination Booklets:
- Audit
- Business Continuity Planning
- Development and Acquisition
- E-Banking
- Information Security
- Management
- Operations
- Outsourcing Technology Services
- Retail Payment Systems
- Supervision of Technology Service Providers
- Wholesale Payment Systems
Specialized IT audit projects we also offer include:
