Certification audit of the electronic private medical prescription system
As CISA Auditor (Certified Information System Auditor) by ISACA I have been the first auditor in Spain to present to the WTO (collegiate medical organization) the first certification audit of the electronic private medical prescription system.
In a first phase we verify that, in general terms and always following the WTO criteria, that the software meets a series of established requirements. In a second phase, the final audit will be carried out, taking evidence of all the control points and requirements that this certification marks.
The audit has a series of steps: Study the approval requirements, analyze the system subject to certification, demonstrate compliance with the control points, security, privacy, documentary, etc., as well as other issues such as analyzing the business continuity plan. , operations, disaster recovery plan or DRP, internal and external communication plan for incidents or crises, response plan and contingency of the information system for incidents …
If you wish, fill out the side form and I will contact you.