System audit

The aim of system audit is to validate and verify the correctness and conformance of functional and non-functional requirements of the system against customer needs, specifications and standards and against end user requirements. System audit consists of in addition to theoretical knowledge also from the practical knowledge of the auditor gathered during the years participating in different software development projects and audits. The outcomes of system audit are usually a list of shortcomings and strenghts and also recommendations for future developments.

Audits and expertises are being carried out by a CISA (Certified Information Systems Auditor) certified auditor. COBIT (Control Objectives for Information and Related Technology) methodology, international standards, legislations and other source documents (incl. system and software architecture documents, frameworks etc) are being used in audits when appropriate and necessary and quite often there is also a need for an audit of system documentation. Development process audits are being covered by our Software Process Improvement service.