An audit is an examination and evaluation, often in relation to financial records or accounts, the accuracy of which is verified. A computer audit generally means an audit of a company’s computer networks and related technology and software, as well as established procedures regarding the use of IT resources. It can be performed to check the efficiency of the system and detect any violations. Less commonly, the term computer audit is used to refer to a tax audit in which a computer is used as a tool to assist in the traditional audit process.
A computer audit may include evaluation of multimedia assets, including CD and DVD burners.
The most basic part of an IT audit is an asset management inventory that identifies all hardware and software stock and their connections, and helps determine what belongs and what needs to be upgraded or replaced. Computer audit information will provide a more or less detailed analysis of each computer’s processor, current operating system, service packs, memory, storage, partitions, size, media resources such as burner CD/DVD drive, and any attached peripherals. such as keyboards, printers, scanners, external drives, microphones, speakers, etc. A software inventory provides the name, installation date, and version of all software. This is useful for a standardization review, especially if you are looking for a standard operating environment.
Many companies have a dedicated team to manage IT assets.
In a license audit, software serial numbers and product keys are collected. Appropriate licenses for individual computers and networks are also reviewed. These steps can help ensure that everything is up to date and examine whether your existing licensing options are still optimal.
Another aspect of a computer audit is a security review. Knowing and having a proper asset register is just the beginning of this process, which may also involve bar coding or labeling of stock. It is also important to check the consistency and effectiveness of firewalls and security software. This means checking anti-virus and anti-malware software, as well as checking systems to make sure they are clean.
Finally, an IT audit can examine IT procedures, looking for ways to make them more efficient. Potential instances of misappropriation of resources, misuse of resources, or mismatch between team and individual job description demands may also be under review. The latter may stem from a determination that the employee is underserved because of the computer configuration he has, or that there has been unnecessary IT spending given the real need.
