Generally it is found that the clients are not using 'Licenced Version'of Operating System / Other Softwares. How are u dealing with the same in IS Audit Reports ?
Yes its not unusual to find clients using "pirated software". Its important to point this fact out to the management. At times management is not aware of the actions taken by IT Dept. Its an internal control failure. Illustrate what are the dangers of using such software and the advantages of using licensed versions. Its often done for saving a few rupees in the short-term but explain how it can prove to be disruptive in case of software failures (licensed versions often come with some warranty or AMCs) - no one will guarantee pirated software. Most important of all its illegal and in violation of Cyber Laws not to mention TRIPS agreement.
Hope its useful.
Do share your experiences. Also while you are asking a query add what is your interpretation that will make for a superior knowledge exchange.
I am putting the Implication of Unlicenced Softtware in IS Audit Report as under :
The use of unauthorized copy of software product may constitute copyright infringement, for which the company may be subject to civil and / or criminal penalties. In addition, unlicensed copies of software may lack the quality controls built into licensed versions, making the copies far more prone to computer viruses. Unlicensed software may also be an old version of the software with defects, incomplete files and inadequate documentation. Moreover, access to documentation, free technical support and upgrades are typically unavailable for unlicensed software.
Please suggest if anything more needs to be added to this.
CAclubindia
