Blogs

The mystery surrounding IT General Controls; which are they?

Does your accountant also talk about generic IT controls or IT General Controls (ITGCs) that they want to assess? If you want to know which framework is used or if ...
Read More >
/ Audit, Blog, External Audit, ITGC

The risk of working without annoying colleagues

Now the Covid-19 pandemic is again a reason for companies to ask their employees to work from home as much as possible, it’s good to have a look at the ...
Read More >
/ Blog, BYOD, Layered Security, Network Security, Physical Security, Risk management
Layered Security

Layered security, synchronizing the physical and logical path

Classification of information and segmented/layered security is best practice within logical and physical access procedures. Also, it is mandatory when you need to be compliant to ISO 27001 and it ...
Read More >
/ Access Management, AICPA, Authorizations, Blog, Compliance, ISO, Physical Security, Privacy

5 Reasons to conduct an audit on your organization

Asking an audit company to conduct an audit on your organization, whether it's regarding a SOC 2, ISO, PCI or something else, always needs an investment. The benefits are not ...
Read More >
/ Audit, Blog, Compliance, External Audit, ISO, SOC 2
External IT auditor

Findings of the external IT auditor, how to deal with it?

Most companies struggle with the findings external auditor like accountancy firms draw in their management letters. The accountancy firm always seems to be looking for new (IT) findings, whilst the ...
Read More >
/ Audit, Blog, External Audit
Audit your supplier

6 pros for auditing your supplier

There are many benefits for conducting an audit on your supplier. In an earlier blog I wrote about why you should conduct a right to audit. In this blog we ...
Read More >
/ Audit, Blog, Compliance, Incident management, ISAE, Privacy, Risk management, SLA, SOC 2, Supplier Assurance