Technology and systems assurance

Maximising the value from IT systems remains at the top of most Board agendas. Effective and efficient IT systems and processes are fundamental for many organisations to remain successful, particularly in the current economic downturn. System problems can easily result in financial loss and operational inefficiencies. In today's economic climate, with increasing pressure on IT budgets and cost management, maximising the value from technology is ever more important.

Maximising the value from IT systems remains at the top of most Board and Executive agendas. Effective and efficient IT systems and processes are fundamental for many organisations to remain successful, particularly in the current economic downturn. System problems can easily result in financial loss and operational inefficiencies. In today's economic climate, with increasing pressure on IT budgets and cost management, maximising the value from technology is ever more important.

Achieving sustainable value through an appropriate balance of robust and efficient controls, whilst eliminating inefficient processes and mitigating risks, remains a key goal for many IT functions.

Our Technology and Systems Assurance team have experience in helping clients understand and mitigate IT risks. We can work with you to help deliver real value from IT. We can evaluate whether IT investments are provided with effective security, governance, sustainability and risk mitigation processes, whilst remaining cost-efficient and providing a return on investment.

Our expertise includes the following key areas:

  • IT Value and Performance;
  • IT Risk Assurance;
  • ERP Advisory Services; and
  • IT Internal Audit Services;
  • Technology, Innovation and Digital Advisory;
  • Data Analytics

Services we can provide:

  • Assessment of your IT governance framework;
  • IT spend analysis and cost rationalisation;
  • Maturity assessment of IT;
  • Data security assessment vs. industry standards (e.g. ISO27001);
  • Data Privacy assessments;
  • Assessment of security framework;
  • 3rd Party Reporting (SSAE16, ISAE3402, AAF01/06);
  • Review of program change controls;
  • Review of user account management;
  • IT Risk Assessments;
  • IT Policy Reviews
  • Enterprise Architecture Reviews
  • King IV Compliance Reviews
  • Project assurance/review of project milestone deliverables;
  • Pre- and post-implementation reviews;
  • Data migration audit;
  • Independent review of Business Continuity/ Disaster Recovery;
  • ERP programme governance assessment and ERP assurance;
  • Data testing and report assurance;
  • Security and controls assurance for data and infrastructure;
  • Segregation of duties and design of business and IT controls;
  • Outsource of IT Internal Audit function;
  • Co-sourcing/partnering to provide specific/targeted IT audit skills;
  • Internal Audit effectiveness review; and
  • Independent review of the scope/coverage of the IT Internal Audit plan;
  • Cyber Resilience Assurance;
  • Vulnerability assessment;
  • Penetration testing;
  • Enterprise Architecture Review;
  • Data Privacy gap assessments and remediation.

Benefits to you include

  • Facilitating an understanding of your governance structure and suite of controls to drive value into your organisation;
  • Optimisation of your control framework in aligning your procedures with best practice and removing redundant processes;
  • Providing a useful, independent view of your IT risks which will allow for you to manage your information, security, disaster recovery, business continuity assurance and compliance risks (e.g. FCA, Data Protection);
  • Mitigating the risk from changing systems and technology to help you to maximise the value from technology;
  • Realising the value of your investment in ERP technologies to ensure you deliver successful change; and
  • Allowing for greater awareness of the challenges and IT risks faced by your organisation at all levels whilst ensuring your internal audit function provides a cost-effective solution to your IT Internal Audit needs.
  • Providing a level of assurance based on industry and organisational experience that has been tested on a global level.

National contacts