New Prodiance White Paper Addresses Recent Guidance from the Institute of Internal Auditors for Auditing and Controlling User-Developed Applications
Prodiance released a new white paper that summarizes how the Prodiance ERM system and associated professional service offerings enable organizations to fulfill the IIA’s new guidelines for identifying, monitoring, and controlling mission critical User-Developed Applications (UDAs). The complimentary white paper is entitled "Addressing Guidance from the IIA’s GTAG-14 for Auditing User-Developed Applications" and can be downloaded from the Prodiance.com web site.
Pleasanton, CA, July 30, 2010 --(PR.com)-- Prodiance Corporation, a leading provider of Enterprise Risk Management (ERM) solutions, today announced the release of a new white paper that summarizes how the Prodiance Enterprise Risk Manager (ERM) system and associated professional service offerings enable organizations to fulfill the IIA’s guidelines for identifying, monitoring, and controlling mission critical User-Developed Applications (UDAs). The new, complimentary white paper is entitled "Addressing Guidance from the IIA's GTAG-14 for Auditing User-Developed Applications" and can be downloaded from the Prodiance.com web site.
Addressing Guidance from the Institute of Internal Auditors
According to the newly released "Global Technology Audit Guide (GTAG-14): Auditing User-developed Applications" from The Institute of Internal Auditors: "User-developed applications (UDAs) typically consist of spreadsheets and databases created and used by end users to extract, sort, calculate, and compile organizational data to analyze trends, make business decisions, or summarize operational and financial data and reporting results. Almost every organization uses some form of UDAs because they can be more easily developed, are less costly to produce, and can typically be changed with relative ease versus programs and reports developed by IT personnel" [1].
The GTAG 14 is careful to point out that "once end users are given freedom to extract, manipulate, summarize, and analyze their UDA data without assistance from IT personnel, end users inherit risks." These risks include errors in UDA logic (e.g. honest mistakes), non-compliance with regulatory mandates, and even fraud – all leading to a high likelihood of material errors. GTAG 14’s primary emphasis is to provide direction to internal auditors on how to scope an internal audit of UDAs and assist management with developing an effective UDA control framework. It also outlines other considerations that internal auditors should address when performing UDA audits, including functional requirements for best-of-breed tools, and best practices for controls over UDAs.
"Prodiance has worked closely with leading audit firms and professionals over the past several years to ensure that our suite of products and services are very closely aligned with the latest guidance," said Dr. Soheil Saadat, President and CEO at Prodiance Corporation. "This new white paper provides an outline for how the Prodiance Enterprise Risk Manager system and associated professional services enable organizations to satisfy the latest guidance from the IIA while mitigating the risk of errors and facilitating compliance with the latest regulatory mandates for controlling mission critical UDAs."
About Prodiance
Prodiance delivers Enterprise Risk Management (ERM) solutions to help improve integrity, transparency and control over end user computing applications such as spreadsheets, databases and BI reports which comprise a significant portion of mission critical data within organizations. Prodiance leverages over 20 years of experience in delivering innovative technology solutions for highly regulated markets. Leading global organizations in more than 25 countries across 6 continents, representing a wide variety of industries - banking, insurance, capital markets, energy, telecommunications, manufacturing, media and entertainment, food and beverage, health care, pharmaceutical, and education - have chosen Prodiance as trusted partner to achieve their strategic goals. Prodiance Corporation is an independent, privately held company based in Pleasanton, California with offices in London, Chicago, Philadelphia, New York, The Netherlands, Brazil, and Shanghai. Additional news and information about Prodiance solutions, products, and services is available at on the prodiance.com web site or by calling +1.925.460.9191.
###
Addressing Guidance from the Institute of Internal Auditors
According to the newly released "Global Technology Audit Guide (GTAG-14): Auditing User-developed Applications" from The Institute of Internal Auditors: "User-developed applications (UDAs) typically consist of spreadsheets and databases created and used by end users to extract, sort, calculate, and compile organizational data to analyze trends, make business decisions, or summarize operational and financial data and reporting results. Almost every organization uses some form of UDAs because they can be more easily developed, are less costly to produce, and can typically be changed with relative ease versus programs and reports developed by IT personnel" [1].
The GTAG 14 is careful to point out that "once end users are given freedom to extract, manipulate, summarize, and analyze their UDA data without assistance from IT personnel, end users inherit risks." These risks include errors in UDA logic (e.g. honest mistakes), non-compliance with regulatory mandates, and even fraud – all leading to a high likelihood of material errors. GTAG 14’s primary emphasis is to provide direction to internal auditors on how to scope an internal audit of UDAs and assist management with developing an effective UDA control framework. It also outlines other considerations that internal auditors should address when performing UDA audits, including functional requirements for best-of-breed tools, and best practices for controls over UDAs.
"Prodiance has worked closely with leading audit firms and professionals over the past several years to ensure that our suite of products and services are very closely aligned with the latest guidance," said Dr. Soheil Saadat, President and CEO at Prodiance Corporation. "This new white paper provides an outline for how the Prodiance Enterprise Risk Manager system and associated professional services enable organizations to satisfy the latest guidance from the IIA while mitigating the risk of errors and facilitating compliance with the latest regulatory mandates for controlling mission critical UDAs."
About Prodiance
Prodiance delivers Enterprise Risk Management (ERM) solutions to help improve integrity, transparency and control over end user computing applications such as spreadsheets, databases and BI reports which comprise a significant portion of mission critical data within organizations. Prodiance leverages over 20 years of experience in delivering innovative technology solutions for highly regulated markets. Leading global organizations in more than 25 countries across 6 continents, representing a wide variety of industries - banking, insurance, capital markets, energy, telecommunications, manufacturing, media and entertainment, food and beverage, health care, pharmaceutical, and education - have chosen Prodiance as trusted partner to achieve their strategic goals. Prodiance Corporation is an independent, privately held company based in Pleasanton, California with offices in London, Chicago, Philadelphia, New York, The Netherlands, Brazil, and Shanghai. Additional news and information about Prodiance solutions, products, and services is available at on the prodiance.com web site or by calling +1.925.460.9191.
###
Contact
Prodiance Corporation
Eric Perry
925-460-9191
www.prodiance.com
eric.perry@prodiance.com
Eric Perry
925-460-9191
www.prodiance.com
eric.perry@prodiance.com
Contact
Categories