What you get from an ITGC engagement
Testing produces evidence → documentation makes it reviewable → automation reduces repeat effort without breaking auditability.
Access Controls
Provisioning, leavers, privileged access, periodic reviews, service accounts, and segregation of duties.
Change Management
Normal and emergency changes, releases, CI/CD pipelines, config changes with ticket-to-evidence traceability.
IT Operations
Backups, batch jobs, monitoring, incidents, patch management, log reviews, and DR/BCP.
Security
Vulnerability management, pen-test governance, security monitoring, and endpoint controls.
Deliverables
Every engagement produces a complete, reviewer-ready pack.
- Full ITGC workpaper pack (with reference to AICPA/PCAOB)
- Population analysis, sampling, and evidence mapping
- AI-assisted testing with full auditor review
- Exception documentation with severity and remediation
- 13-section professional export (PDF/HTML)
Powered by ITGC Factory
Purpose-built platform enforcing methodology through workflow gates — consistent output every time.
- 26
- controls
- 8-9
- step workflow
- AICPA
- aligned
Want a scoped proposal?
Send your timeline, systems, and ITGC areas. I'll reply with a fit check, approach, and day rate.