IT Controls & Governance

Our team utilizes its IT and controls experience to provide IT risk assessments, establish IT policies and procedures, and design an IT controls framework. These services can be performed as an assessment depending on the maturity and depth of the existing IT infrastructure.

Our services include:

  • Assist in the design and implementation of IT organization, governance, and strategy
  • Analyze existing IT organizational structures, assessing roles, responsibilities, capabilities and work allocation
  • Assess IT policies and procedures to ensure all critical areas of the IT organization are addressed and that they ensure adequate General Computer Controls (GCC) and Computer Application Controls (CAC)
  • Develop IT policies and procedures
  • Test controls to ensure proper design and execution
  • Review and assess SSAE 18 reports, control exceptions, and client control considerations
  • Identify internal control requirements, monitoring control performance, and reporting on control compliance of IT change projects