At iNVATERRA, we have the expertise to develop an IT Audit Function’s setup documents in line with Sarbanes Oxley Requirements. From charter and policies leading to governing principles, our consultants have experience in developing the audit policies and procedures.

Most of our core expertise has been gained globally with the Big four and fortune 50. Our services in the area of initial establishment of Audit function include:
• Audit Function Charter
• Audit Manual Development
• Audit Procedures Standardization
• Audit Policies and Controls Development.
• IT Policies and Procedures development in line with SOX requirements.

BUSINESS PROCESS ANALYSIS

• This includes studying the entire process and the associated policies, and identifying the gaps in performance and compliance with (SOX) policies.
• In addition, inherent risks in the processes will be identified with reference to the international frameworks(Utilizing the COBIT, COSO and ITIL).

IT AUDIT WORK PROGRAMS SUPPORT

IT Auditors need to follow a documented work program for each audit engagement. In light of SOX regulations, traceability is a key element of the work performed. This is also a requirement of the IIA standard. Thus, we have developed and constantly update a repository of IT Audit Work programs in line with SOX that supports IT Auditors in carrying out reviews of a wide range of IT systems, processes, and technologies. We also customize audit programs based on client specific requirements.

INTERNAL AUDIT QUALITY ASSURANCE REVIEW (Six Sigma Based)

We conduct independent Quality Reviews of the internal audit activities and work papers utilizing Six Sigma Project Audit Techniques. Our Quality Assurance Reviews are focused to improve efficiency and effectiveness of the internal audit documentation and allied processes. We conduct primary/secondary and tertiary Work Paper reviews to determine the quality index of the work as desired by the client.

In addition we provide following value added services to our partners:

• SOX PROJECT PLAN DEVELOPMENT FOR IT AUDITS/CONTROL REVIEWS
• SOX IT CONTROLS LIST (Repository of Control Objectives and Activities)
• IT AUDIT HEAT MAP AND ASSOCIATED TOOLS (Customized for SOX)
• REMOTE IT AUDIT SERVICES
• REMOTE PENETRATION TESTING
• APPLICATION DESIGN & CODE REVIEW
• WORK PAPER ORGANIZATION/FILING AND STANDARDISATION
• FIELD AUDIT EXPENSE FILING AND AUTOMATION
• CUSTOM AUDIT MANAGEMENT SYSTEM DEVELOPMENT