Audit. Compliance. Assurance.


IT General Controls

IT General Controls (ITGCs) comprise of four domains and can encompass operating systems, applications and databases. The four domains are:

Access to Programs and Data

  • User Identification and Authentication
  • Privileged Access
  • Periodic Review of User Access and Permissions
  • Logging and Monitoring of Privileged Activities & Account Logon Failures
  • Information Security Governance & User Awareness

Program Change

  • Change Management Policies, Procedures and Communication of Policy Updates
  • Separation of Environments (Development, Test, Production)
  • Documentation of Development and End User Testing
  • Initial Approvals to Develop and Final Approval to Implement
  • Post Implementation Review
  • Segregation of Duties

Program Development

  • Framework(s) for Program Development Projects (i.e. Waterfall, Agile, etc)
  • Business Sponsorship, Project Charter, Initial Authorization to Develop
  • Testing Documentation with Expected and Actual Results
  • Testing Approvals and Final Approval(s) to Implement
  • Post Implementation Review

Computer Operations

  • Batch Job Processing
  • Backup and Restoration Testing
  • Incident Management & Problem Management

TurnKey IT Solutions can help design, implement and test IT General Controls for your organization and business units and provide practical recommendations for remediation items.

For additional information or questions, please contact us by filling out the form to the right or email us at

Related Links
Contact Us Today!

Questions or Comments:

Enter code EXACTLY as it appears in box below
Code Image - Please contact webmaster if you have problems seeing this image code Load New Code