InfoTechAudit cc can develop documentation specific the client's company. This documentation can be used for day to day running. However in the event of InfoTechAudit cc documenting the systems they will not be able to audit their own work until such time as the external auditors have produced their audit.
Standards
A member of the cc was involved in the drafting of the IT security policies for his last 2 major employers. Due to the high quality and completeness of the documentation the member received a special increase in his salary.
Disaster Recovery
A member of the cc was responsible for auditing the Disaster Recovery Planning (DRP) of the holding company. He was performing this audit due to his company using their IT Facilities. This audit had recently been performed by the IT auditors of the holding company. Yet through the audit significant issues that had not been highlighted by the holding company's audit were brought to the fore, resulting in the holding company making significant changes to the process. The member was also responsible for assisting in the development of certain prior company's Disaster Recovery Plans.
Further to this the member has also audited Disaster Recovery Testing and was also responsible for the audit of the Y2K switch over which went without any significant issues.
Policies
InfoTechAudit has access to many of the policies and DRP structures that may be required by the client. These can be adjusted and fleshed out according to the client's requirements, thus saving significantly on the time required to develop the same policies and standards from "scratch".
