Information is the key to success in today’s economy. If your information is not secure, then you are hardly able to make reliable decisions. Information is key in ensuring competitive advantage in business. For this information to be secure, it must possess three key attributes, namely:
- Confidentiality
- Integrity
- Availability
Today’s best companies use up-to-date and rigorous information and management systems to ensure that they have the necessary know-how to remain competitive.
At CGRC we have some of the most experienced team of IT Audit And Assurance consultants. These consultants can advise on the improvements of existing systems, or the installations of new ones. We at CGRC, use the best business practices to safeguard your information assets and the steps that you need to take to ensure continued return on investment in security.
For a successful IT Audit And Assurance, we appropriately assess all the risks faced by your business processes. We are then able to help ensure the integrity, reliability and confidentiality of information within your organization. In our assessments, we always make sure that your technology controls are better aligned with your Business and IT needs.
AREAS COVERED BY CGRC CONSULTANTS:
- Sarbanes Oxley Compliance: Section 404 and 302.
- IS Controls Evaluation.
- Project Risk Management.
- IT Service Management.
- Technology Change Management.
- IT Asset Management.
- Risk Assessment in Audit Planning.
- Reviews of Mission Critical Systems.
- Application Systems Review.
- Business Intelligence.
- Outsourcing Risk Management.
- Irregularities and Illegal Acts.
- Network and Systems Management.
- Enterprise Resource Planning (ERP): Logical Access and Process Controls.
- Computer Forensics and Incident Response.
- Business to Consumer (B2C) Assessment.
- Internet Banking Assessment.
- Business Process Reengineering (BPR).
- Control Risk Self-assessment.
- Process Analysis.
- Independent SAS 70 reviews.
- Assistance with the design, implementation, and testing of key controls.
- Pre/ Pre-system(s) implementation controls design and effectiveness review.
‘Organisations are constantly facing new threats…’