What is the purpose of the auditor's review of SDLC documentation?

What will be an ideal response?

In reviewing the SDLC documentation, the auditor seeks to determine that completed projects now in use reflect compliance with SDLC policies including:
? User and computer services management properly authorized the project.
? A preliminary feasibility study showed that the project had merit.
? A detailed analysis of user needs was conducted that resulted in alternative conceptual designs.
? A cost-benefit analysis was conducted using reasonably accurate figures.
? The detailed design was an appropriate and accurate solution to the user's problem.
? Test results show that the system was thoroughly tested at both the individual module and the total system level before implementation. (To confirm these test results, the auditor may decide to retest selected elements of the application.)
? There is a checklist of specific problems detected during the conversion period, along with evidence that they were corrected in the maintenance phase.
? Systems documentation complies with organizational requirements and standards


PTS: 1