Cyberintel Kenya

Information Systems Audit.

Our Systems Audit willl include the review not limited to the following:

  1. System Overview and Architecture:
  1. Reviewing documentation and diagrams outlining the architecture of the system contained in the manual.
  2. Assessing the hardware infrastructure, software components, databases, and interfaces with external systems.
  3. Evaluating the scalability, reliability, and redundancy of the system architecture to support the supermarket’s operations.
  4. Reviewing the Service Level Agreement (SLA) to gain understanding of the scope the system covers vis-a-vis what has been deployed on site.

2. Data Integrity and Security:

    1. Reviewing data handling processes and mechanisms to ensure the integrity, confidentiality, and availability of sensitive information.
    2. Assessing Security internal controls e.g. access controls, encryption measures, and audit trails to mitigate security risks and prevent unauthorized access or data breaches.
    3. Verifying compliance with relevant data protection regulations and industry standards for information security.

    3. Integration with External Systems:

    1. Evaluating the system’s integration with external systems, including:
    • Supplier portals for procurement and inventory management
    • Payment gateways for transactions processing
    • Accounting software for financial management- Managerial Accounting module
    1. Verifying data exchange protocols, API (Application Programming Interface) compatibility, and data synchronization mechanisms to ensure seamless integration and data consistency.

    4. Regulatory Compliance:

      Ensuring compliance with applicable regulatory requirements, including:

      1. Data protection laws (e.g. local data protection regulations)
      2. Consumer rights regulations (e.g., consumer protection laws, fair trading regulations)
      3. Industry standards for food safety, retail operations, and information security
      4. Compliance with eTIMS – to include if well intergrated.
      5. Reviewing documentation and audit trails to demonstrate compliance efforts and adherence to regulatory standards.

      5. Maintenance and Support:

        Evaluating the system’s maintenance procedures, including:

        1. Software updates and patch management
        2. Technical support services and response times
        3. Assess the effectiveness of vendor support in addressing issues, resolving system failures, and providing timely assistance to supermarket staff.