Our audit was conducted to examine the organizations structure and their activities, also to assess any risks that will impact the achievement of the organizations objectives into business process. Here is a list of (risks) questions I would like to ask: 1. What are the internal controls for SpigitEngage? 2. What would happen if employee’s proprietary information were compromised? 3. How often does the company reexamine the security of the servers? 4. Who else is authorized to have access to the servers besides the IT department? 5. How are employees trained to follow procedures to ensure the safeguard of vital information? 6. What controls are in place to prevent or mitigate fraud, computer abuse, or data loss for this department?
After conducting our audit, these were the controls for each risk listed above:
Control 1: Spigit has an operation team that drives production automation including installation, upgrade, monitoring, and optimization of multiple customer processing environments on a Linux, Tomcat, and MySQL platform. Their objective is to provide a foundational infrastructure for a robust lights-out production