Services

Risk Assessments – Endicator and Evidenced
Working with clients to identify the type and scope of control assessments. Providing expertise in the execution of assessments, reporting results and recommendations to management.

Key Control Identification and Supporting Documentation (test plans when required)
Identifying key controls within business and IT processes. Documenting controls and creating test plans to demonstrate the effectiveness of the control. Advising clients on evidence storage and retention.

Remediation Plans
Creating scalable solutions to audit and regulatory problems. Using our knowledge to provide clients with cost effective solutions that address audit and regulatory problems.

Reporting
Customising reporting to meet client requirements, providing management with high level reports that allow for drill down to the lowest detail if required.

Risk Profiles (weighting of processes and assets)
Working with clients to correctly identify key processes and assets. Creating a weighting mechanism that allows clients to identify those areas that present the greatest risk and allowing for the creation of individual risk profiles.

Control Mapping to Policies
From category and objective to risk and control, we can provide mappings to internal policies, regulations, standards and methodologies. This can be a one to many and or a many to one mapping dependent upon client requirements.

Gap Analysis of Mandatory Regulations to Firms' Control Frameworks
Using assessment results and mappings to identify differences and gaps that might exist between internal controls, internal policies, external regulations, standards and methodologies.