Skip to the main content.
Try GRC Playbook for free
Try GRC Playbook for free

Information Technology (IT)

General Control Activities over Technology (ITGC)

This library of Information Technology (IT) Playbooks provides a set of fully loaded and editable templates that represent the core of what is generally required by management (including process owners), boards of directors, and their audit committees, as well as internal and external auditors of relevant organizations, to document, assess, test, report and oversee the design and operating effectiveness of the typical key internal controls on which management is reliant to maintain compliance with IT Security regulatory requirements. They are drawn from a range of authoritative sources including the Committee of Sponsoring Organizations (COSO) and the American Institute of Certified Public Accountants (AICPA).

The General Control Activities over Technology (ITGC) Playbook addresses the following areas:

  • Policy and Procedures
  • Program Development and Change Management
  • Security and Access – Logical
  • Security and Access – Physical
  • Data Backup
  • Third-Party Vendor Management
  • Application Controls
  • Problem and Incident Management
  • End-user Computing, and
  • Additional Considerations (including scope, IPE, MRCs and emerging technology risks)

One Affordable Subscription. 100+ Playbooks.

With one subscription, you'll gain access to all of our Playbooks.


Would you like to find out just how affordable and beneficial a GRC Playbook® subscription can be?

Everything you need, on a platform you already know.


Try GRC Playbook for free