Presentation is loading. Please wait.

Presentation is loading. Please wait.

IT-audit case PEMPAL, Skopje, April 2019.

Published byJuuso Myllymäki Modified over 5 years ago

Similar presentations

Presentation on theme: "IT-audit case PEMPAL, Skopje, April 2019."— Presentation transcript:

1 IT-audit case PEMPAL, Skopje, April 2019

2 Context: Introduction of new integrated software which encompasses all HR-process: SAP-HR; The SAP-HR system will be introduced by means of a temporary project organization responsible for a flawless implementation. The new SAP-HR system will integrate the following processes: payroll, employee administration, time management, travel management, legal reporting; The Secretary General asked the audit department to give additional assurance on ensuring a flawless transfer to the new integrated system as well as on the governance of the implementation-project itself.

3 Main risks related to the audited processes:
Confidentially (risk of losing/leaking vital or privacy sensitive information to third parties), Integrity (trustworthiness of the data the system delivers); Availability (continuity, back-up and recovery etc.); Risks concerning the appropriate governance arrangements of the IT-project itself.

4 Objective(s) and scope of the audit engagement:
The objective of the audit is to give reasonable assurance on the following key audit-questions: Is the governance of the project designed and functioning in such a way that it will pave the way to successful migration and implementation of SAP-HR within the ministry of Economy?; Is the adequateness of the application- and general controls sufficient related to confidentially of data, integrity of data and the availability of vital information of the HR-related systems during the project phase, migration and delivery phases of the project?; Assurance statements on the proper governance of the project as well as the adequateness of CIA-related controls on application- and general level will be accompanied with recommendations if necessary and applicable. Potential findings and recommendations.

5 Criteria to be used and audit scope:
The objective of the audit is to give reasonable assurance on the following key audit-questions: PRINCE2: PRINCE2 is a structured project management method. PRINCE2 emphasizes dividing projects into manageable and controllable stages. It is adopted in many countries worldwide, including the UK, Western European countries, and Australia; COBIT5: COBIT5 is the only business framework for the governance and management of enterprise/business IT. It is the product of a global task force and development team from ISACA, a nonprofit, independent association of more than 140,000 governance, security, risk and assurance professionals in 187 countries; Existing organizational Procedures and regulations which are relevant for the migration process towards the new SAP-HR system. If these procedures and regulations conflict with requirements of Prince2 and/or COBIT5 it will be noted as an audit finding. SCOPE: The audit will not extend its scope by assessing the key-objectives as defined for the transformation towards the new system.

6

Download ppt "IT-audit case PEMPAL, Skopje, April 2019."

Similar presentations

HELP Water Law and Policy Dr. Patricia Wouters Director, Water Law and Policy Programme University of Dundee, Scotland Member of HELP Task Force.

HELP Water Law and Policy Dr. Patricia Wouters Director, Water Law and Policy Programme University of Dundee, Scotland Member of HELP Task Force.
Day: Wednesday 9 th November Session: 9.00am - 10.30am Speaker: Stig Enemark Topic:The Land Management Paradigm.

Day: Wednesday 9 th November Session: 9.00am am Speaker: Stig Enemark Topic:The Land Management Paradigm.
Chapter 4: Security Policy Documents & Organizational Security Policies.

Chapter 4: Security Policy Documents & Organizational Security Policies.
Sodexo.com Group Internal Audit. page 2 helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and.

Sodexo.com Group Internal Audit. page 2 helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and.
Professional Behaviour

Professional Behaviour
COBIT - II.

COBIT - II.
Global Information Systems

Global Information Systems
Chapter 5 5-1 © 2009 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.
INTOSAI Compliance Audit Guidelines (ISSAI )

INTOSAI Compliance Audit Guidelines (ISSAI )
IS Audit Function Knowledge

IS Audit Function Knowledge
1 Pertemuan 3 Auditing Standards and Responsibilities Matakuliah:A0274/Pengelolaan Fungsi Audit Sistem Informasi Tahun: 2005 Versi: 1/1.

1 Pertemuan 3 Auditing Standards and Responsibilities Matakuliah:A0274/Pengelolaan Fungsi Audit Sistem Informasi Tahun: 2005 Versi: 1/1.
© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.

© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.
The Information Systems Audit Process

The Information Systems Audit Process
IT Outsourcing Andy Darnell Jennifer Lawrence Jessica Pruitt.

IT Outsourcing Andy Darnell Jennifer Lawrence Jessica Pruitt.
Conducting the IT Audit

Conducting the IT Audit
Internal Auditing and Outsourcing

Internal Auditing and Outsourcing
1 Homologues Group Meeting Slovenia, October 2009 Republika SlovenijaEuropean Union Ljubljana, 12-13 October 2009 Introduction to IT audits PART II IT.

1 Homologues Group Meeting Slovenia, October 2009 Republika SlovenijaEuropean Union Ljubljana, October 2009 Introduction to IT audits PART II IT.
Audit of Public Procurement

Audit of Public Procurement
INTERNAL AUDIT IN UKRAINE State Financial Inspection of Ukraine

INTERNAL AUDIT IN UKRAINE State Financial Inspection of Ukraine
Company Confidential How to implement privacy and security requirements in practice? Tobias Bräutigam, OTT Senior Legal Counsel, Nokia 8 October 2012 1.

Company Confidential How to implement privacy and security requirements in practice? Tobias Bräutigam, OTT Senior Legal Counsel, Nokia 8 October

Similar presentations

Ads by Google