IT Internal Audit

Weaver’s IT audits hone in on the technology risks that may impede your business operations. They uncover areas where your business may be vulnerable and recommend proactive steps to help prevent attacks from external and internal sources.

We can assist management in building or facilitating the completion of their internal IT risk assessment, or by building an appropriate internal audit scope for technology-based risk topics. Procedures are typically conducted together with your IT staff and consist of such activities as reviewing network architecture, assessing security management policies and procedures (and compliance with those policies and procedures), interviewing IT personnel, inspecting configurations and using automated tools to scan internal and external networks.

Upon completion, we deliver comprehensive, actionable recommendations for improvement and identify the specific areas in which your business may be most at risk.

Our experienced IT team can perform IT audits alone or in conjunction with other services such as financial statement audit or Sarbanes-Oxley compliance.

Our Capabilities

Icon - IT Risk Assessment IT Risk Assessments
Icon-FFIEC FFIEC
Icon-Co-Sourced IT auditor Co-Sourced IT auditor
IT Governance & Effectiveness audits IT Governance & Effectiveness audits
Information Security reviews Information Security reviews
System and Organization Control (SOC) examinations System and Organization Control (SOC) examinations
General Computer Controls assessments General Computer Controls assessments
Data Privacy audits Data Privacy audits (e.g. HIPAA, PCI, GLBA compliance)

Related Articles

How to Reduce Terminated User Exceptions in Your Next Audit

How to Reduce Terminated User Exceptions in Your Next Audit

With little notice or time for preparation, remote work arrangements and/or downsizing have placed greater demands on the IT department of many organizations. Even without a pandemic, one of the most common ITGC issues is disabling access in a timely manner to reduce the risk of inappropriate access to systems post-termination. Here are some key procedures that may help your organization minimize the risk surrounding removal of access permissions. Read More

In Times of Change, Internal Audit Offers Stability and Value

In Times of Change, Internal Audit Offers Stability and Value

Business leaders face difficult decisions that may have both short-term and long-term implications for their business, employees, investors and stakeholders. There are ways Internal Audit professionals can provide value to leaders during these uncertain times. Read More

Read More Thought Leadership