IT Control Framework in the Federal Government – Considerations for an Audit Strategy
Shared Services Canada (SSC) is a department mandated to address endemic problems such as high costs, complexity and security risks, stemming from the fragmentation of the Government’s IT infrastructure. SSC will address these problems through an enterprise-wide approach to IT services and renewal. One of the benefits of the resulting consolidation will be to create the opportunity of establishing an IT Control Framework covering a substantial portion of IT services across the government and using it to provide assurance on these to partner organizations.
The presentation will provide a succinct overview of the theory and practice of IT controls and connect it to the development of the underlying principles of a proposed audit strategy.
Yves Genest has joined Shared Services Canada as Chief Audit and Evaluation Officer in May 2012. He has accumulated more than two decades of experience with increasing responsibilities in the fields of auditing and evaluation. During his career, he has been involved, as an analyst, auditor, evaluator or senior manager, with a wide range of programs and activities in more than 50 different entities in the Federal Government.
He was Principal, Performance Audit Methodology at the OAG from 2004 to early 2007. As such he was responsible to ensure that the OAG professional standards, policies and guidance for performance audits met the OAG professional and operational needs.
In 2007, he joined the Public Service Commission, where, as Director General, he was responsible for various aspects of methodology and conduct of audits undertaken by the PSC under section 17 of the Public Service Employment Act. Yves Genest has Master Degrees in Political Science and Public Administration.