Information Technology General Controls
The baseline controls over IT environments that auditors test, covering access management, change management, computer operations, and program development. Weak ITGCs undermine trust in every application and financial report running on those systems. They are central to SOX audits and SOC reports.