Home     Enquiry    
 
 Services
   Audit & Assessment
 
  • Quality Assurance & IT     System Audit
  • Network Security     Assessment
  • Internet Security     Assessment
  • IS Audit Education
    •    Performance Tuning &    Optimization
       Risk Management
       Disaster Recovery &    Contingency Planning

    © 2003 HSL InfoSec Pvt. Ltd.
    		 

     Quality Assurance & IT System Audit


    Increasing competition, reduced time-to-market and the global competitive parameters demand perfection from all constituents in the Information Technology business. It means that software product and services companies have to get their output right, the first time, every time.

    Information Technology-driven companies need to develop their products and services under a recognized standard. Product liability is a critical aspect of any business transaction, and a product/service that does not perform as promised, carries a real risk of financial impact.



    The Quality Assurance system (QAS) embraces the Total Quality Management philosophy. It is a set of documented policies, processes and procedures matching global standards. Some of the objectives of QAS are:

    • Defining a process to ensure that the IT Policy is aligned with business objectives. This explains how an organization should perform specific tasks, some of which are:
      - Software development
      - Document control
      - Configuration management
      - Software verification & validation
    • Enabling clients to develop their own quality management system, based on standards like ISO and CMM (Capability Maturity Model)
    • Conducting a GAP Analysis on the organisation's ambitions (and how to reach them) and identifying areas where implementation would be advantageous to the organization.
    The IT System Audit is an important check at the testing phase to ensure that the Information system performs as it is intended to. The policy dwells on the following issues:
    • Ensuring that the information system meets the international ISACA (Information Systems Audit & Control Association) audit standards.
    • Adopting policies in the initial development phase for efficiency and effectiveness of the software being developed.
    • Ensuring that the audit process covers all aspects of the information system, including Performance, Security and Functionality, and to clarify its weakness and strength.
    Some of the deliverables in the IS Audit phase are:
    • Review of IT environment vis-a-vis hardware & software
    • Examining of IT Controls
    • Review of IT functions in an organisation vis-a-vis authority, responsibility & accountability and scalability
    • Review of Business Continuity & Disaster Recovery Plans
    • Review of compromises to IS infrastructure
    • Review of follow up procedures
    Other services in this category include:
    • Third Party, ISO 9001 Review
    • Peer Review