We specialize in various IT areas, one of them being audits.

IT (IT) audit - analysis of strengths and weaknesses and opportunities for applications, infrastructure, IT organization, etc. This service is aimed at customers who want to check the level of IT area maturity, efficiency, effectiveness or the level of IT infrastructure security and above all verify your IT strategies with the best business models that deserve to be called leaders in this field.

We specialize in the following IT audits:

• IT due diligence audits

The IT Due Diligence audit is targeted at private and venture Capitals and Groups, which want to analyze a potential company for technology, its sensitivity to development, capital intensity, etc. This audit is often linked to the e-commerce Due Diligence Audit if the company conducts activities in online sales channel.

• IT strategic audit

The IT Strategic Audit is intended for medium and large companies, where the business strategy is the basis of the activity. The audit analyzes whether the strategy and technology chosen by the IT and PMO departments supports the strategic goals of the organization. If not, the suggested recommendations can give tangible results in the form of support for the implementation of the goal by IT units.

• Application audit

Application Audit is intended for companies that are facing changes in systems or their development. The audit allows to determine the degree of scalability, performance, modifiability and their costs, security and usability of various types of applications such as: Internet applications, eCommerce platforms, SaaS applications or internal applications (backoffice). The audit consists of many smaller analyzes, such as the Code Audit or Application Security Audit for Internet attacks. The set of audit elements is selected depending on the client's needs.

• Security audit for the processing of personal data

The audit of the security of personal data processing is designed to analyze the current status and its assessment and to prepare recommendations for the implementation of security policy in accordance with the Personal Data Protection Act (GIODO) in IT systems (applications, databases, networks) and procedures, regulations and documentation.

• Security audit

Security audit is a collection of many audits, which are selected depending on the client's needs. The scope of the security audit includes: network and infrastructure audit, security audit of applications (internal and web), data security audit, security audit of personal data processing (GIODO), etc.

• Data quality audit (BigData)

The data quality audit determines the principles and methods of collecting and processing data in the organization. The audit covers both the audit of systems that generate data and their descriptions and processes that collect them. The audit allows you to assess the consistency and reliability of data that is generated and used by various departments, processes and applications.

• Source code audit

The source code audit allows you to evaluate and recommend changes to the application's code state in terms of best practices, standards, code styles, etc. We audit .NET, Java and PHP applications. Source code audit is often an element of the application audit, where elements such as technology, architecture or security are also subject to analysis.

• Audit of ISO 27001

Audit of the correct implementation of the international ISO 27701 standard regarding information security management systems. The audit verifies the correctness of procedures, the quality book and its adherence.

• Audit of Recommendation D for financial institutions

The audit of Recommendation D is intended for financial companies and companies cooperating with them. The audit is to determine the level of implementation of Recommendation D in terms of data quality, data security, their compliance with the law on the protection of personal data and information systems such as applications, databases, networks, where these data are stored and processed.

• Legal IT audit

The legal audit is intended for all companies that want to verify the legal level of their licenses, patents, contracts with suppliers and associates, service agreements (SLA), etc. The audit elements are selected depending on the needs of a given client and can be very comprehensive or only apply to a given area, e.g. contracts with subcontractors.

• Audit of a website, online store or SaaS applications

The audit of a website, online store or SaaS applications (both B2C and B2B) is intended for companies that are considering the further development of a given application / web platform. The audit evaluates and recommends changes in the following areas: technological area, i.e. scalability, modifiability, code quality, performance or security, and in the eCommerce area: usability, conversion, traffic sources, etc. The audit is selected depending on the needs and may consist of many elements for analysis.

• Audit of the mobile application

Audit of the mobile application is sued for the analysis of both the technological area of ​​the application (the technology used, its development, performance and security) as well as the eCommerce area such as Usability, speed of operation, etc.

• Audit of ICT infrastructure

Audit of ICT infrastructure allows for analysis, evaluation and recommendation of changes in systems, network infrastructure, servers and ICT network in terms of efficiency, security, costs and correctness of operation. The audit allows you to create so-called Continuity Plan and allows you to check the infrastructure status in accordance with the adopted security policy.

• Audit of ERP and CRM systems

The audit of ERP and CRM systems allows the evaluation of existing ERP, CRM, WMS and other systems in the organization in terms of their functioning, costs, expansion, performance and security. This audit is often the beginning of the processes of choosing a different system or its modification.

• Audit of the SAP ERP, CRM system

The audit of SAP ERP and CRM systems enables analysis of the current implementation status, its performance, licensing, functionality, correct implementation of the Add-On application, etc. The recommendations are road map of the system development and possible changes in processes, architecture or licensing.