The current business environment is one of increased IT security threats, changing legislative requirements, and pressure from IT consumers, both internal and external, for 24/7 access to the latest in technology.
This makes it increasingly challenging to maintain the ongoing integrity, confidentiality and availability of information.
The role of IT assurance is to identify and assess whether controls are in place to effectively manage the key areas of IT risk to the organisation. A well designed IT control framework is of limited benefit if it's not operating as intended, so assessing the working effectiveness of IT controls is a critical part of the risk management process.
Our team provides a wide range of services focussed on the assessment of the effectiveness of control design and operation, from benchmarking reviews to specific assessments of controls over emerging risk areas such as cloud computing and mobile device management.
Ultimately, we provide our clients with the comfort that IT risks in their organisation are being appropriately managed, and that the investment in IT controls represents an effective use of resources.
We use global, benchmarked data to assess technology risk management functions and processes against recognised good practice and industry peers and to advise on improvements.
We establish technology risk management frameworks, including control rationalisation, design and implementation of controls, and use of tools to manage the efficient delivery of technology risk management.
We recommend process improvements to technology risk functions, ranging from incremental enhancements to existing processes through to large-scale change.
We provide technology advice across a broad spectrum of platforms and applications and deliver on internal audit risk assessments and audit plans.
Our specialists address general computer controls, ERP and other application control configurations, segregation of duties assessments, information security, pre- and post-implementation reviews, database and network audits and advanced and emerging technologies, such as cloud computing, social media and mobile device management.
Our approach is founded on providing assurance and advice over "what must go right". This is significantly influenced by factors within our clients' industry. We team according to industry so that our people truly understand the risks, issues and opportunities inherent for our clients, allowing them to provide genuine points of view and insight across Energy and Resources, Technology, Media and Telecommunications, Public Sector, Consumer Business and Transport and Financial Services.