Techology Audit

Auditing

Cybersecurity

Security programme and governance audit, assessments against frameworks, security risk assessments and control testing programmes, ransomware preparedness, incident response, technical assessments (e.g., penetration testing, threat hunting), privileged access reviews, and system and device (e.g., IoT) testing.

Cloud

Cloud strategy audit and governance, security scans and assessments, assessments of cloud migration plans, controls over information access, and compliance with legal and regulatory mandates, effective implementation of the shared responsibility model, and assessment using the Well Architected Framework.

Data Governance & Privacy

Assessments of data management and data governance, data quality assessments, data privacy programme reviews, data loss prevention reviews, and assessments against regulatory requirements.

Enterprise Applications

Assessments of configuration and application controls, integrity of reporting, security models, sensitive access and segregation of duties, and fit-for-purpose. We use leading commercial, as well as proprietary technology solutions.

Technology Resilience

Assess operational resilience in the context of your use of technology and data, including disaster recovery and crisis response plans, broader business resumption planning, technology infrastructure and architecture assessments, and assessments of overall technology strategy, structure and delivery capabilities.

Project Risk Advisory

Add an independent risk and controls audit lens to key enterprise projects for management, the audit committee, and applicable external compliance / regulatory entities. We partner throughout the project lifecycle.