IT General Controls

At JC Jones, risk based focus on information systems and technology is core to our strategy. Our professionals are trained in computer aided audit techniques (CAAT) such as ACL and Microsoft Access. Continuous audit strategies and increased transactional audit coverage are possible through the proper use of technology.

IT General Controls

Information Systems & Technology Assessments

Information systems and technology are the pervasive tools all organizations leverage to achieve business results more efficiently.  Given the systemic nature of information systems and the heavy organizational reliance on technology, having well controlled and secure systems is imperative to achieve successful results.

Audits of enterprise and legacy information systems:

  • IT General Controls – change management controls, security/system access & data recovery
  • Application level audits – user controls, data integrity, conversion protocols
  • Security audits – vulnerability testing, system architecture reviews
  • IT (pre-implementation) Readiness Assessment
  • COBIT Assessments
  • Disaster Recovery and Business Continuity Assessments

Internal Audit, Risk and Compliance Services: Areas of Expertise

Sarbanes-Oxley Compliance BigSOX Compliance
SOC Readiness BigSOC Readiness
Internal Audit Quality Review
IT General Controls BigIT General Controls
Enterprise Risk Management BigEnterprise Risk Management
internal audit vector artInternal Audit Outsourcing
SOX Compliance

The JC Jones top-down, risk based approach to Sarbanes-Oxley (SOX) compliance, coupled with our automated software solution, has a proven track record of providing substantial savings in compliance costs.

Learn More
SOC Readiness

JC Jones provides System and Organization Controls (SOC) reporting focused on controls at a service organization relevant to security, availability, processing integrity, confidentiality, or privacy.

Learn More
Internal Audit Quality Review

JC Jones provides Quality Assurance Reviews (QAR) in accordance with IIA Standards while leveraging our 20+ years of internal audit experience to assess the image and credibility of your department.

Learn More
IT General Controls

Risk based focus on information systems and technology is core to our strategy. Our professionals are trained in computer aided audit techniques (CAAT) such as ACL and Microsoft Access.

Learn More
Enterprise Risk Management

JC Jones offers Risk Management services to ensure an entity comprehensively and systematically incorporates risk evaluation as part of developing and executing its strategy.

Learn More
Internal Audit Outsourcing

JC Jones is a full service internal audit outsource partner, including data analytics, fraud/forensic audits, cybersecurity assessments, SOX compliance, internal control testing and operational audit. Our client list ranges from large privately held companies to IPO registrants to multi-billion and multinational public companies.

Learn More

Designed and developed by