Auditing IT Services & Systems
An area of specific expertise for URM is conducting IT audits. Many organisations have established internal audit functions which competently undertake the majority of the audit requirements. However, IT audits also require a level of technical expertise to challenge and interrogate any findings and often these skills are not found in internal audit teams. Although these technical skills exist within the organisation's own IT team, these individuals do not always possess auditing skills and aren't able to audit their own work. URM's auditors possess not just auditing expertise and experience, but in depth understanding of the technical IT infrastructure (including databases, networking and operating systems) and best practice processes (change management, service desk management).
URM provides organisations with a full service in relation to their internal audit function to allow them to gain assurance IT is being appropriately controlled and is meeting the requirements of the organisation. URM has significant experience within IT and has been involved in auditing all the major areas of IT administration. These include change management, release management, capacity management and access control management. In addition, URM is able to audit key systems such as Windows Active Directory, firewalls and networking, as well as most key database systems and common operating systems.