Computer security audit is a systematic, measurable technical assessment of how the organization's security policy is employed at a specific site. Quantiq's Computer security auditors work with the full knowledge of the organization, at times with considerable inside information, in order to understand the resources to be audited. By understanding customer security policy, Quantiq's Computer security auditors try to made the process on defining and maintaining effective security policies. Quantiq's Computer security auditors perform their work though personal interviews, vulnerability scans, examination of operating system settings, analyses of network shares, and historical data. The process that Quantiq's Security Auditor will be:

• A site survey. This is a technical description of the system's hosts. It also includes management and user demographics.
• Security questionnaires may be used as to follow up the site survey. These questionnaires are, by nature, subjective measurements, but they are useful because they provide a framework of agreed-upon security practices.
• Determine the scope of the audit.
• Develop audit plan. This plan will cover how will audit be executed, with which personnel, and using what tools.
• Discuss the objective of the audit with site personnel along with some of the logistical details, such as the time of the audit, which site staff may be involved and how the audit will affect daily operations.
• Ensure audit objectives are understood.
• Perform Audit.
• Conduct an outgoing briefing, ensuring that management is aware of any problems that need immediate correction.
• Conduct an initial meeting to help focus the outcome of the audit results. During this meeting, the auditors can identify problem areas and possible solutions.
• Create Audit report.
• Finally, the auditor will present the report and request for feedback on the findings that presented.