TOR for IT Auditing

KRK is a microfinance institution (MFI), with its head office in Prishtina. In order to ensure good services on KRK/IT infrastructure software-s/application and their efficiency publish this advertisement:

Terms of References for Auditing of Information Technology

 KRK is a Microfinance Institution (MFI), focused on providing financial services to low-income clients, with a particular focus on micro, small, agricultural and other businesses in rural and urban areas, with a priority focus on agriculture and a specific attention to financial, social and environmental sustainability.

In order to ensure good services and to have reliable IT infrastructure, operating systems and software with sustainable functionality in accordance with the business it develops, KRK wants to make an audit of its Information Technology.

The scope of work should cover the following areas;

– Assessment of the IT infrastructure used in KRK;

– Risk Assessment of IT Controls (General IT Controls);

– Assessment of business continuity, disaster recovery plan, backup plan and procedures;

– Assessment of Information Security;

Implementation and timeline;

The auditing is expected to be completed by the 10 April 2024.

The selected company or individual experts, should submit to KRK the written draft report which cover the ToR, no later than 15 April 2024.

 Qualification requests;

The company’s or individual experts should have relevant qualification and expertise in IT auditing. Expertise in context of finance/microfinance sector is preferable.

Selection of most convenient offer will be selected based on estimation of the offer in term of ToR, price, expertise of the company/expert regarding IT auditing in finance/microfinance sector, ect.

Deadline for submitting of offers is until 27.03.2024

Interested companies or individual experts can send their offers through email address: krk_imf@krk-ks.com or directly at KRK Head Office, Behije Dashi Street No.20 (near police station number 2), Prishtine.