IT Audit Services

IT Audit

Every day, businesses rely more on technology to perform regular business operations, and with each day, new external and internal cyber predators are on the rise.

Regulations continue to proliferate around ensuring the security, confidentiality, privacy, and availability of electronic information. Your organization has controls in place for the protection of data. Dean Dorton’s team of professionals can evaluate whether these controls are designed effectively, operating effectively, and/or meeting compliance requirements. Our IT experts evaluate information system control environments, identify the risks, provide a basis for reliance on the system, and deliver cost-effective control recommendations.

Dean Dorton provides IT audit and compliance services for a variety of clients. We specialize in providing unique service offerings that are customized to meet the specialized needs of each client.


Whether you are looking to accelerate the establishment of an internal IT audit function or realize cost savings by moving to an outsourced model, Dean Dorton can provide your organization with a complete outsourced solution to see rapid results. Many organizations large enough to have an internal audit department are often not large enough to employ a full-time IT audit resources—we can fill your need for internal IT audit staff. The breadth and depth of our skilled internal IT audit professionals makes your business more efficient, ensures objectivity, and allows you to focus on your core functions.

Organizations can receive significant value from having a SOC examination performed including reducing redundant audits and differentiation from peers. SOC reporting performed by Dean Dorton ensures all user organizations and their auditors have access to the same information.

Our technology consultants work closely with our audit teams to provide IT general controls testing and services on our audit engagements. We have worked to develop an IT general control framework that can be used to perform a general IT assessment for any organization.

Dean Dorton knows the importance of properly identifying and mitigating your significant risks. We have the expertise to help you determine the appropriate response to various risks including those related to fraud, cybersecurity, and financial reporting. Many IT regulatory requirements such as GLBA and HIPAA require IT risk assessments. We can also ensure the appropriate cyber security framework is incorporated if needed.

The IT compliance landscape changes rapidly. Dean Dorton can help your organization with your compliance requirements, whether to assess your organization’s readiness or perform procedures to verify compliance status. Examples of regulations our experienced professionals are familiar with include CMMC, DFARS, HIPAA, GLBA GDPR, PCI, SOX, and state regulations.

CIS, COBIT, ISO 27000 series, NIST 800-53, NIST 800-171, NIST CSF, and SCF are just a handful of common cybersecurity frameworks (CSF). Adopting a CSF standardizes processes, priorities, and IT strategy. Dean Dorton can assist in the evaluation process to determine what CSF is appropriate for you organization.

Having the appropriate IT policies and procedures in place not only protects your organization, employees, systems, and information; but they are also a common requirement for IT regulations. Dean Dorton has experienced professionals to assist your organization in this area.

There are two important questions related to cyber liability insurance. The first is whether coverage is sufficient. The second is whether the policy has compliance requirements that must be met prior to paying a claim. Dean Dorton can evaluate whether your cyber liability insurance policy is meeting your organization’s expectations.

IT Audit and Risk Assessment Benefits

  • Decrease significant risks to your organization
  • Ability to focus on core business objectives
  • Meet compliance standards
  • Ensure proper controls throughout your entire enterprise
  • Proactive insight – prevent future risks and compliance issues