Oversight and Governance
OG-WRL-016

Technology Program Auditing

Responsible for conducting evaluations of technology programs or their individual components to determine compliance with published standards.

  • T0412: Conduct import/export reviews for acquiring systems and software
  • T1020: Determine the operational and safety impacts of cybersecurity lapses
  • T1026: Determine procurement requirements
  • T1067: Recommend development of new applications or modification of existing applications
  • T1068: Create development plans for new applications or modification of existing applications
  • T1154: Develop risk, compliance, and assurance monitoring strategies
  • T1155: Develop risk, compliance, and assurance measurement strategies
  • T1306: Conduct technology program and project audits
  • T1344: Determine if procurement activities sufficiently address supply chain risks
  • T1345: Recommend improvements to procurement activities to address cybersecurity requirements
  • T1394: Develop independent cybersecurity audit processes for application software, networks, and systems
  • T1395: Implement independent cybersecurity audit processes for application software, networks, and systems
  • T1396: Oversee independent cybersecurity audits
  • T1397: Determine if research and design processes and procedures are in compliance with cybersecurity requirements
  • T1398: Determine if research and design processes and procedures are accurately followed by cybersecurity staff when performing their day-to-day activities
  • T1399: Develop supply chain, system, network, and operational security contract language
  • T1480: Examine service performance reports for issues and variances
  • T1481: Initiate corrective actions to service performance issues and variances
  • T1498: Determine if cybersecurity requirements included in contracts are delivered