The Jet Infosystems company carried out IT audit to SZRTs of VTB Bank

The Jet Infosystems company announces completion of inspection of IT infrastructure, management system for IT services and documentary ensuring activity of the Directorate of Maintenance of Information Technologies (DMIT) of the Northwest regional center JSC Bank VTB (SZRTs of VTB Bank).

In a project deliverable a versatile assessment of a current status of the IT system of the Center was given and recommendations about its upgrade are developed.

In March, 2011 JSC VTB Severo-Zapad Bank was reorganized – attached to VTB Bank. Based on head office VTB Severo-Zapad the Northwest regional center is created. Integration of the IT system, completion and setup of IT processes for further development of future Center according to strategic plans of VTB Group was one of the major directions at accession of bank. Before planning ways of development of the IT system, the decision to book substantive audit of VTB the Northwest was made. For this purpose the Jet Infosystems company having experience of complex audits of different scale on large enterprises of different sectors of economy including in banks was invited.

The project lasted six months and included inspection of IT infrastructure (the general architecture, server complexes, storage systems, backup systems, data networks, engineering subsystems of the basic and reserve DPCs), management practice inspection by IT services and documentary ensuring activity of DSIT. Carrying out audit was performed using well proved techniques and technologies (including own) fulfilled in practice by experts of Jet Infosystems company.

Examination of IT infrastructure was conducted in close cooperation with specialists of the customer and had large-scale character as infrastructure of bank includes several data processing centers and hundreds of items of equipment.

Having analyzed the current situation and development plans which are available for the customer, experts of Jet Infosystems company offered methods of upgrade of IT infrastructure according to the requirements for availability formulated by the customer and also the indicators of reliability and performance based on the best practices on the IT organization. Possible ways of optimization of the IT park in terms of decrease in operating costs, first of all – due to consolidation and virtualization of computing resources and resources of a storage system were provided to the customer.

Within inspection of a management system of IT the processes, the most important for the solution of the current tasks were selected:

• management of the directory of IT services,
• incident management,
• configuration management,
• monitoring of management of IT infrastructure,
• service reporting.

On the basis of the purposes and tasks of management of the IT recorded during the interview with heads of functional departments of bank assessment of the existing management processes was made. The model of a maturity of processes on CoBit on a five-point scale was for this purpose used. Three groups of risks of the existing system of IT management – risks of loss of controllability, risks of data loss and risks of mismatch to the purposes and tasks of DSIT were in addition identified. Also during inspection the problems and suggestions for improvement formulated by employees of the bank were recorded.

Especially for carrying out audit of the existing documentary ensuring activity experts of Jet Infosystems company developed own technique. It allowed to carry out the comprehensive assessment on different cuts: completeness of documentary providing, maintenance, relevance of regulations, a scope on types of activity, on organization units, on maintenance entities. Results of inspection contained information on all types of documentation used in DSIT. On the basis of these data it is possible to plan both changes of documents, and structural conversions.

"For carrying out IT audit important not only use of extensive tools and ownership of a set of techniques. Are of great importance experience consulting the practician and the level of examination. Understanding it, we entrusted the project of Jet Infosystems company, – Alexander Marchenko, the head of directorate of maintenance of information technologies of the Northwest regional center JSC Bank VTB comments. – "At the exit" we received the document containing objective assessment of a situation, conformable to opinion of specialists of our IT service. Materials of audit were actively used by us when holding IT actions for reorganization of VTB the Northwest in the form of accession to VTB Bank".

"Complex audit opens ample opportunities for understanding of as far as tasks of business are provided in terms of IT resources. All levels and processes are exposed to assessment: from the equipment to questions of management, from documentary providing before activity processes – the complexity also consists in this interrelation of components. The management of SZRTs understands it and considers results of audit at development planning of IT", - Andrey Shaposhnikov, the head of group of system architecture of Jet Infosystems company tells.

The northwest regional center JSC Bank VTB received the broad and objective picture of a status of IT infrastructure, management system for IT services and documentary ensuring work of IT service. In the closing statement the main requirements, recommendations about optimization and upgrade taking into account features of an organization structure and perspectives of development are stated. Already uses data retrieveds of SZRTs in practice – at resource planning, restructuring, drawing up budgets, etc.