Organizations must understand and manage technology-related risks, whether from external sources or from sources within the company. Although such risks are common, it is often difficult to objectively access and manage them.
Our Information Technology Assurance Services team provides an independent view of the technology risks that you face and the adequacy and effectiveness of your controls on the confidentiality, integrity and availability of your systems and data.
IT Governance
The greater the investment in IT, the greater the risk and the greater the need to implement an effective IT Governance regime. Cost-effective, secure and reliable IT functionality is fundamental to business success. We are able to provide integrated and cost-effective recommendations that meet your company's specific competitive needs and we work with your company to develop effective IT governance processes and controls that are tailored to your particular industry and business requirements.
IT General Controls Reviews
We can perform IT controls reviews based on established standards such as COSO, CoBIT, FFIEC and ISACA.
Pre- and Post-Implementation Systems Reviews
Our professionals can perform a project implementation review before or just after a new system has been implemented to identify areas of risk that may have been overlooked by the project team.
Application Audits & Process Reviews
Our professionals can perform detailed application system audits and process reviews to identify key control processes and provide recommendations to management on how to better improve controls around these systems.
Security Reviews
Information security and the ability to control access to data are critical. We can provide a detailed analysis of your information security processes including segregation of duties to critical financial systems as well as reviewing your overall security strategic plans.
DRP/BCP Development and Evaluations
Our technology risk professionals have significant experience conducting IT and business impact analyses, disaster recovery (DR) and business continuity planning (BCP), evaluation of backup and recovery technologies, and the review and monitoring of DR/BCP drills and tests.
IT Due Diligence
Technology is often overlooked during potential business combinations and acquisitions. We can evaluate the technology environment and related risks related to potential acquisitions and report any issues or risks that could have an impact for an acquiring company or organization.
Computer Assisted Audit Tools Implementations
We can use various automated tools and techniques to analyze data related to any situation that requires the review and reporting of large quantities of data. Our methodology allows us to analyze this data in a fast and efficient manner and report the results concisely.
IT Project Management
Our professionals can perform a project management review to determine if the implementation of a new IT process was managed in accordance with the project plan or identify areas of risk that may have been overlooked by the project team.
IT SOX Services
Many times, organizations need assistance to effectively identify the related IT risks and in implementing and testing the necessary SOX-related IT controls. We excel at SOX IT compliance because our ITAS professionals have acumen deep background in this precise area, supported by many years of experience in accounting, IT operations and management, and business operations. We apply a risk-based approach that identifies the proper IT controls that are relevant to your organization so that the documentation and testing of controls can be performed in an efficient and effective manner.