GRC offerings
BDO’s role is to work with you and help ensure that your technology systems are aligned to the business strategy, and that major transformation programmes (ERP solutions) and specific complex projects are delivered successfully, and IT assets are adequately protected
We bring expertise in specialist areas of GRC (such as IT Governance, Enterprise Risk Management, Policy Management, Third Party Management and Compliance Management) to complement the functional knowledge and skills of our team
Additionally, we help you to ensure management has adequate information to support critical decisions, deliver benefits through successful programmes and projects, successfully implement ERP solutions in support of back-office or enterprise-wide transformations and to understand the implications and opportunities afforded by technology during transactions
Business & System Controls
We work with you (CEO, CFO and CIO) in:
- Defining requirements for controlling and managing the performance of your business
- Designing and implementing effective and efficient models, processes and systems around reporting and using the results to make sound business decisions
Services include:
- Design and implementation of IT Business controls, compliance reporting, harmonisation of internal and external processes
- Design and implementation of IT shared services integrated reporting (consolidation and planning) document management
IT Risks
Technology risks are found throughout the business process landscape. Understanding how to control technology risks in a business environment will guide the way to design a technology landscape (processes, systems, and data) which will evolve in an orderly manner and perform in accordance with given regulatory principles.
We work with you (CEO, CFO, and CIO) to:
- Protect information and data through CA/CM (Continuous Auditing & Continuous Monitoring) techniques
- Avoid business break down by having workable technical and organisation controls in place
- Improve the data security concerning mission crucial data on laptops, PDAs or other handheld devices
- Secure new ways of working via web portals and cloud computing:
- Helping you to design and implement robust and fault-tolerant integrated control frameworks (for e.g. COSO, COBIT, ITIL); and
- Provide external assurance certification (e.g. ISAE 3402, ISO 27001, BS 10012) relevant to both internal and external requirements