ANA Cyber IS Audit is an information systems audit service designed for the banking sector. The service provides comprehensive assessment of IT infrastructure, focusing on security, compliance, and risk management for financial institutions. The audit covers four main areas: Governance, Risk, and Compliance (GRC) evaluation including identification of risks and regulatory compliance verification; IT Security and Controls assessment including access controls, encryption, authentication, penetration testing, and vulnerability analysis; Data Integrity and System Evaluation to ensure data accuracy and proper system configuration; and Physical and Environmental Security assessment of data centers and disaster recovery capabilities. The service includes application software audits to verify development procedures, built-in controls, and maintenance processes. The audit methodology addresses both custom-made and ready-made software vulnerabilities. Additional services include data center audits covering server infrastructure, network peripherals, power systems, and physical security; network security architecture review to assess network design against cyber threats and compliance requirements; and phishing attack simulation to test employee awareness and response to social engineering threats. The service is delivered by certified professionals holding credentials including PMP, CISSP, CISA, ISO 27001:2022 LA, CEH, CHFI, ECSA, and CNSS. The company maintains ISO 27001:2022 certification and follows confidentiality protocols including NDAs with project staff.