Request for Proposal: IT Audit
Subscriber Content
This sample request for proposal (RFP) can be used by organizations seeking a qualified service provider to implement an IT audit function. Sample steps include completing a risk assessment at the beginning of the contract period based on discussions with the CFO and certain key members of IT management and focusing on key areas, such as firewalls and intrusion detection.
This document can be used as a general guide to understand the structure and strategy for facilitating systems audit work. Organizations should continuously update and monitor the processes included in this document to ensure that it reflects business operations.