UNIORG IT System Audit (IDW) (According to IDW Auditing Standard 330)
In the course of the annual financial audit, auditors are obligated to incorporate the accounting-related IT systems into their assessment of the annual financial statement. The IDW’s (Institute of Public Auditors in Germany) expert committee on information technology (FAIT) has developed accounting standards based on legal requirements to provide companies with guidelines for implementation.
Depending on the complexity of the IT systems used, a comprehensive IT system audit according to IDW Auditing Standard 330 (AS 330) is required. The IT system audit according to AS 330 not only applies to large companies, but also to small and medium-sized The IT system audit is divided into two parts. First, a baseline inventory of the relevant IT systems and a risk classification are performed. Afterwards, a more in-depth audit is performed for areas that are particularly subject to risk.
Auditing companies without their own IT specialists need expert support from IT specialists with knowledge of the relevant guidelines in order to be able to award a positive result based on the IT systems and the IT processes that relAt the same time, it is worthwhile for companies to perform their own IT system audits before the annual financial audit in order to identify weak points in Many companies also perform a system audit for larger IT projects (e.g. implementation of a new accounting system) to prevent errors before the system goes live.
UNIORG cooperates closely with external auditors to perform IT system audits according to the IDW guidelines.
The IT system audit is often performed in the course of the annual financial audit. This objective, independent external assessment offers clients new insight into their own IT environments. We provide the results of our system audits in detailed audit reports. Using this report, the external auditor can incorporate the legal requirements into his or her final report.
The UNIORG IT system audit identifies urgent problems and weak points, helping to improve the availability and security of company data.