1. To understand the existing IT infrastructure set up of the entity. 2. Review the existing IT policy of the entity. 3. Review the existing ERP which has been implemented and understand the application related automated controls which require to be tested. 4. Carry out testing of the application controls using IT dependent audit procedures to ensure the controls designed are adequate and effective. 5. Identify gaps/observations, if any from the above procedures and discuss with the management. Also suitable recommendations in concurrence with the management will be developed to address such gaps.

1. IT policy of the entity 2. Q&A sessions with the IT head of the entity 3. Based on the above two a detailed information requirement list will be shared to carry out the rest of the procedures. This requirement will be custom made based on the type of organisation and IT setup in place.