Data Centre- Concurrent Audit

RBI has mandated banks to implement a Concurrent Audit process of Data Centre via circular RBI/2015-16/133 DBS.CO.ARS. No. BC. 2/08.91.021/2015-16, date July 16, 2015. Therefore, DC concurrent audit provides compliance with the Regulator guidelines.

Why choose Riskpro

  • Riskpro has a very efficient team when it comes to the concurrent audit of the data centre. A well-suited team comprising of Certified Information System Auditors, internal Auditors, and Banking Domain expert can collaborate with your organization to ensure the design and operating effectiveness of Data Centre and Disaster Recovery Site IT Operations.
  • We follow a risk-based approach, which is not only exhaustive but also helps you to create a protective ambience around your data systems.
  • Provide assurance on the concept of maker checker compliance for identified payment systems/ solutions.
  • Provide assurance on the concept of Segregation of Duty control between functions.
  • Assist bank in the identification of risk for critical IT operations near to real-time for mitigation
  • Our Approach to Concurrent Audit

    Our Understanding about Requirement

  • Scope Finalisation
  • Chronology of DC Concurrent Audit Activity
  • Concurrence on Escalation Matrix
  • Services provided by Riskpro

    Requirement understanding:
    Riskpro understands that Bank has identified critical areas for the concurrent audit of the data centre to meet compliance with regulatory guidelines

    Scope:
    1.) Data Centre Activities: We conduct a monthly review on compliance of identified domains/ areas in line with Policy, procedures and Standard Operating Procedures of the organisation in IT Management or operations of Data Centre.

    2.) Privilege User Activities: We conduct a review of identified payment applications like Core Banking, SWIFT, Treasury etc. The administrative and transaction logs of the above systems are reviewed.

    3.Chronology of DC Concurrent Audit Activity:

    1 Initial Data Requirement- Last day of the month
    2 Release of Query Sheet- As per agreed TAT
    3 Release of Draft Report- As per agreed TAT
    4 Final Management response timelines- As per agreed TAT
    5 Publish of Final report- As per agreed TAT

    Tags: 
    Tags: 

    Other Services of Interest

  • Core Banking Solution Upgradation or Migration

    A bank upgrading its Core Banking Solution (CBS) technology to a new version aims to provide significant enhancement in services to its esteemed customers. Data migration in core banking is all about...
  • Why Do Controls Fail? Webinar By Riskpro India

    As Risk Management and Audit Professionals, we spend most of our time emphasizing to Senior Management...
  • DSCI DPF Consulting Services & Training

    With accelerated advancement in the tech world, there is also an unconscious evolution to cyber-crimes. Continuous development of new attacks and techniques that not only allows attackers to...
  • DSCI Data Privacy Framework Certification

    Riskpro India is an accredited assessing organization to provide companies with DSCI’s data privacy framework. With the frequency and magnitude of cyber-crime attacks on the rise, data security and...
  • Overview of DSCI’s Data Privacy Framework- Webinar

    To protect the privacy of personal information from unauthorized use, disclosure, modification, or misuse, DSCI has conceptualized its approach towards privacy in the DSCI Privacy Framework (DPF©)...
  • Riskpro's AML/CFT Services

    Riskpro provides AML/CFT services that includes regulatory gap analysis, policies and procedures relating to AML. The services includes. Sanctions Processes Regulatory Requisites Conformity to...
  • Procurement Fraud - Riskpro can help

    If you suspect procurement fraud, do contact Riskpro India and we can help to unearth the suspicious activity. Following are some of the ways in which we can help. 1. Review of onboarding...
  • Riskpro's Service Verticals

    In today's world, risks are not few. An enterprise faces various risks and challenges and is subject to uncertainties and negative impacts from these risks. Managing risks is your key to untapped...
  • Privacy and Data Protection Services - General Data Protection Regulation (GDPR)

    The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years. Riskpro India now offers Indian companies Data Protection assessments, GDPR...
  • Go to top