Information system and communication technology auditor

Information auditors review and evaluate all or certain aspects of automated processing of the information and data and technical components of the information system of the company that is being audited. Their objective is to perform controls over company information management to check the level of reliability, accuracy and availability of its information systems and of stored data so that management can take the appropriate measures.

• Create an audit plan.
  Design the audit plan and pass it on to the client for approval.
  Draw up a summary establishing the working methodology, the procedures used and the execution time for the audit.
  Promote the active participation of the auditee.
• Analyse, jointly with the audited company, the existing model of information processing.
  Analyse the different information needs of the departments and of people, in addition to the company-client information channels.
  Evaluate the information systems and procedures existing, origin and destination of information and compares them to the optimum situation.
  Analyse interdepartmental information systems.
  If a new system of information has been applied, assess its effectiveness and its weaknesses.
• Certify the security levels of the current information system in force.
  Analyse security state and needs in company information systems.
  Analyse if the company fulfills security regulations on information systems.
  Review the degree of adaptation and compliance with the Spanish Personal Data Protection Act (LOPD).
• Analyse the results and draw up an improvement plan.
  Draw up a technical report with the information compiled and interpret it.
  Draw up a summary with instructions for executing an action plan on audited areas.
  Identify shortcomings to be able to take corrective actions.
  Present the report to the client company so that it takes suitable measures.
  Perform periodic reviews after delivering the quality certificate to the company.
  Identify opportunities for improvement and communicate them to the relevant staff.
  Properly verify the information obtained with documentation.

Regulated training and graduates

• Grau: Enginyeria de sistemes TIC
• Grau: Enginyeria informàtica
• Grau: Enginyeria informàtica de gestió i sistemes d'informació
• Grau: Informàtica i serveis
• Grau: Enginyeria en organització de les tecnologies de la informació i la comunicació
• Grau: Enginyeria en tecnologies industrials
• Grau: Enginyeria en organització industrial

Complementary training

Other specific skills

Analytical thought: Level 2

Orientation within reach: Level 3

Concern for order and quality: Level 3

Learning and use of knowledge: Level 1

Customer orientation: Level 1

Planning and organisation: Level 1

Management

The organisation, administration and control of a company or entity are the main interests of people related to the management field. Activities included in this field of interest vary from effective resource management, feasibility analyses and solving business problems to the development of skills and fostering of motivation in relation to human resources. Knowledge regarding specific techniques of strategic administration and business management are required to carry out these activities.

e-Commerce and payment systems consultant

Logistics Engineering Technician

Logistical Engineering Technician

Competition law and policy manager

Avionics development engineer

• Work hours

  Flexible working hours Auditors' working days vary depending on where the audit is at and, in most cases, they must adapt their workday to that of the company at which they are working. In some firms -like financial institutions- they request full-time professionals.

• Salary

  Gross annual wages from 27,500 to 36,000 euros. Wages can vary depending on experience.

• Professional category

  Technician