AI Checklist Generator

From the makers of Manifestly Checklists

Email address

Home > Financial Services > ITGC Internal audit

ITGC Internal audit

1. Planning and Preparation

Define the scope of the ITGC audit.

Identify relevant stakeholders and establish communication channels.

Review prior audit findings and management responses.

Gather relevant documentation (policies, procedures, system architecture).

2. Risk Assessment

Conduct a risk assessment to identify key IT risks.

Evaluate the impact and likelihood of identified risks.

Prioritize risks based on their significance to the organization.

Document risk assessment results and update the audit plan accordingly.

3. Control Environment

Assess the overall IT control environment.

Review IT governance structures and frameworks.

Evaluate the adequacy of IT policies and procedures.

Analyze organizational culture and its impact on IT controls.

4. Access Controls

Evaluate user access management processes.

Review user provisioning and de-provisioning procedures.

Assess the effectiveness of role-based access controls.

Test access rights to critical systems and data.

5. Change Management

Review change management policies and procedures.

Assess the process for documenting and approving changes.

Evaluate the testing and validation of changes before implementation.

Test a sample of recent changes for compliance with procedures.

6. Incident Management

Review incident management policies and procedures.

Assess the effectiveness of incident detection and response mechanisms.

Evaluate the incident escalation process.

Analyze incident logs for trends and recurring issues.

7. Data Integrity and Security

Assess data backup and recovery procedures.

Evaluate data encryption and protection measures.

Review data classification and handling policies.

Test data integrity controls and data retention practices.

8. Monitoring and Reporting

Review monitoring tools and processes for IT systems.

Evaluate the effectiveness of performance metrics and KPIs.

Assess reporting mechanisms for IT control effectiveness.

Document findings and communicate results to stakeholders.

9. Follow-Up and Remediation

Develop a plan for addressing audit findings and recommendations.

Establish timelines for corrective actions.

Assign responsibility for remediation efforts.

Monitor progress on remediation and follow up on outstanding issues.

10. Documentation and Review

Ensure all audit work is thoroughly documented.

Review documentation for completeness and accuracy.

Obtain management sign-off on the audit report.

Conduct a post-audit review to identify lessons learned and areas for improvement.

Download CSV Download JSON Download Markdown

Use in Manifestly

Related Checklists

Compliance Checklist

Compliance Checklist is an important tool to ensure that financial services firms are in compliance with applicable laws and regulations.

view →

Client Onboarding Checklist

A Client Onboarding Checklist is essential for ensuring that all necessary steps and processes are followed when onboarding a new client, helping to create a secure, compliant and efficient customer experience.

view →

KYC Checklist

KYC Checklist is an important tool for financial services providers to help ensure compliance with anti-money laundering and other regulatory requirements.

view →

Data Security Checklist

Data Security Checklist is essential for financial service providers to identify and mitigate cyber security risks and ensure the safety and privacy of customer data.

view →

Risk Management Checklist

A Risk Management Checklist is an essential tool for identifying, assessing, and mitigating risks in financial services to ensure the safety and security of customers and their assets.

view →

Disaster Recovery Checklist

A Disaster Recovery Checklist is important for ensuring the continuity of critical services and operations in the event of an unexpected disruption or disaster.

view →

Employee Onboarding Checklist

An Employee Onboarding Checklist is important to ensure that both the employer and employee have a clear understanding of expectations, roles, and responsibilities in order to ensure a successful start to the employment relationship.

view →

Internal Controls Checklist

Internal Controls Checklist helps ensure that the financial resources of an organization are safeguarded, and financial reporting is accurate and reliable.

view →

Regulatory Reporting Checklist

A Regulatory Reporting Checklist is essential for ensuring compliance with applicable laws and regulations and avoiding costly penalties.

view →

Business Continuity Checklist

It is essential for Financial Services organizations to have a Business Continuity Checklist in order to ensure continuity of operations and protect the organization from financial, operational, and reputational risks.

view →

AML Checklist

AML Checklist is essential to ensure compliance with anti-money laundering regulations and protect financial institutions from criminal activities.

view →

Contract Review Checklist

A Contract Review Checklist is essential for ensuring that all terms and conditions are compliant with applicable laws, regulations and standards, and that all parties involved understand their rights and obligations.

view →

Hey there! Here's a little about us or visit our recurring workflow SaaS: Manifestly Checklists

Light Dark