Auditoría informática de las tecnologías de información y comunicación en la Dirección Provincial del Ambiente de Pastaza, período 2013

Abstract

The current research work is an “Informatics Audit of the Information and Communication Technologies at the Environmental Provincial Department from Pastaza, 2013 period.” Which aims to rate the level of fulfillment of the Internal Control regulations stated by the General Comptroller of the State, group 400 and sub group 410 related to “INFORMATION TECHNOLOGIES”. Previous to the Audit application, the organizational structure was analyzed, specifically the Technologies unit, concerning to processes, plans and objectives which guarantee the proper use, handling, administration and management of the technological resource. This Audit is made up of three stages: on the first stage, the outline for the Audit planning is provided; the operability of the Informatics Area is known in order to start with the Audit. On the second stage the Audit is carried on in order to determine and analyze the fulfillment of the regulations related to logics security, physical security, use and administration of the technological resource; on the third stage, the failures found are displayed regarding to the application of the stated regulations, for instance, an Informatics Audit report is delivered with its corresponding conclusions and recommendations. This research work comes out t evidence mistakes and/or failures upon the management of technological resources which risks the integrity of data, information and technological infrastructure. It is recommended to the personnel of MAE-PASTAZA, the execution of the conclusions and recommendations stated in the report of the Informatics Audit.