Our Services. Unlocking IT Value - Transforming IT Enabled Investments into Business Value



Similar documents
COBIT 5 Implementation Certifi cate. Training Course & Exam

Governance & Auditing of Social Media

Revised October 2013

Strategy, COBIT and Vision: HOW DO THEY RELATE? Ken Vander Wal, CISA, CPA, Past President, ISACA

Measuring IT Governance Maturity Evidences from using regulation framework in the Republic Croatia

COBIT 5 for Risk. CS 3-7: Monday, July 6 4:00-5:00. Presented by: Nelson Gibbs CIA, CRMA, CISA, CISM, CGEIT, CRISC, CISSP ngibbs@pacbell.

Keeping watch over your best business interests.

IT Charter and IT Governance Framework

ISACA ON-SITE TRAINING DELIVERS EXPERT INSTRUCTION AT YOUR WORKPLACE

Vendor. Management. For sponsorship or to become our partner, contact:

IT Insights. Managing Third Party Technology Risk

Increasing IT Value and Reducing Risk. More for Less with COBIT5. IT Governance and Strategy

Technology. Building Your Cloud Strategy with Accenture

Office Hours: By Appointment COURSE DESCRIPTION AND LEARNING GOALS

Mapping COBIT 5 with IT Governance, Risk and Compliance at Ecopetrol S.A. By Alberto León Lozano, CISA, CGEIT, CIA, CRMA

Power issues A PwC üdvözli PwC s services Győrt for the energy sector PwC welcomes Győr

Cash Management for Asset Managers

Internal Auditing Guidelines

Procurement Transformation: Towards Sourcing & Procurement Excellence

PROJECT MANAGEMENT SURVEY

Weighing in on the Benefits of a SAS 70 Audit for Third Party Data Centers

Capital Projects and Construction: Building in Risk Management and Project Controls

Business Continuity Management - A Guide to the Italian Premier Control System

Unlocking the opportunity with Decision Analytics

Applying Integrated Risk Management Scenarios for Improving Enterprise Governance

Technology. Building Your Cloud Strategy with Accenture

COBIT 5 For Cyber Security Governance and Management. Nasser El-Hout Managing Director Service Management Centre of Excellence (SMCE)

IS Audit and Assurance Guideline 2202 Risk Assessment in Planning

Cloud Analytics Where CFOs, CMOs and CIOs Need to Move To

IT Governance: framework and case study. 22 September 2010

for Information Security

ENTERPRISE RISK MANAGEMENT POLICY

Effective risk management

Understanding and articulating risk appetite

Citation for published version (APA): Berthing, H. H. (2014). Vision for IT Audit Abstract from Nordic ISACA Conference 2014, Oslo, Norway.

IT OUTSOURCING FOR SMALL & MEDIUM SIZED ORGANISATIONS IN THE FINANCIAL SERVICES SECTOR

COBIT 5: A New Governance Framework for Managing & Auditing the Technology Environment CS 6-7: Tuesday, July 7 3:30-4:30

Feature. Developing an Information Security and Risk Management Strategy

Life Cycle Management. Service Offering

Moving Forward with IT Governance and COBIT

Cyber security. Cyber Security. Digital Employee Experience. Digital Customer Experience. Digital Insight. Payments. Internet of Things

ARCHITECTURE SERVICES. G-CLOUD SERVICE DEFINITION.

IT Sales Lead Generation

Cyber Resilience Implementing the Right Strategy. Grant Brown Security specialist,

Cyber Security Consultancy Standard. Version 0.2 Crown Copyright 2015 All Rights Reserved. Page 1 of 13

Strategic IT audit. Develop an IT Strategic IT Assurance Plan

Embracing CHANGE as a Competitive Advantage

DYNAMIC INFRASTRUCTURE Helping build a smarter planet

Specialist Cloud Services Lot 4 Cloud Printing and Imaging Consultancy Services

Security Risk Management Strategy in a Mobile and Consumerised World

Image Area. View Point. Transforming your Metrics Program with the right set of Silver Bullets.

G13 USE OF RISK ASSESSMENT IN AUDIT PLANNING

Please feel free to call on our organizations if we can be of assistance in any way on further deliberations, task forces or committees.

THE ROLE OF FINANCE AND ACCOUNTING IN ENTERPRISE RISK MANAGEMENT

Guide to the Sarbanes-Oxley Act: IT Risks and Controls. Frequently Asked Questions

Microsoft Confidential

SERVICES OVERVIEW. Integrating Risk, Technology, People and Process for a sustainable Future CONTACT US. About Us. Our Business Philosophy

Enterprise Risk Management & Information Technology

Namibia Internal Audit Survey

SECURING THE INTERNET OF THINGS:

fs viewpoint

Organization transformation in times of change

A Look at the Varied Responsibilities of Internal Auditors. internal auditing: All in a days work

Using COSO Small Business Guidance for Assessing Internal Financial Controls

How To Understand The Role Of An Internal Audit

RISK ADVISORY SERVICES CONSTRUCTION AUDIT SERVICES

Global Mobility Outsourcing

IT Risk Closing the Gap

Accountancy & Business Support for. Professional Service Firms

Tailoring enterprise risk management strategies to the Main-Street insurer

New Needs, New Models: How growth and innovation are changing the way Asia Pacific organisations acquire technology

Telecommunications: Moving forward in uncertain times

On the horizon 2016 Hot topics for IT internal audit in financial services. An Internal Audit viewpoint

Effective Internal Audit in the Financial Services Sector

VENDOR RISK MANAGEMENT UPDATE- ARE YOU AT RISK? Larry L. Llirán, CISA, CISM December 10, 2015 ISACA Puerto Rico Symposium

Procuring Penetration Testing Services

Is cyber security now too hard for enterprises? Cyber security trends in the UK. Executive Summary

Credit Unions RISK ADVISORY SERVICES. Enterprise Risk Management, Internal Audit and Complex Accounting Services

Application Value Assessment

Service Organizations and the Internal Audit function conference Institute of Internal Auditors in Israel

Better Connected Employees. For more productive, confidently connected employee engagement. Vodafone Power to you

TERMS OF REFERENCE (TORs) OF CONSULTANTS - (EAG) 1. Reporting Function. The Applications Consultant reports directly to the CIO

ICT Function Inter-Industrial Risk Management

CONSTRUCTION SOLUTIONS

OneCoin Blockchain Audit Report

Corporate Governance and Enterprise Risk Management Derek Jackson, Senior Manager 5 September 2005

S11 - Implementing IT Governance An Introduction Debra Mallette

Specialist Cloud Services Lot 4 Cloud EDRM Consultancy Services

The Shadow IT Phenomenon

Retail store systems for high performance

Quick Guide: Meeting ISO Requirements for Asset Management

Terms of Reference for an IT Audit of

How To Get A Better At Developing An Application

RECKENEN FOCUS ON SAS 70 & SSAE 16

451 s Procurement and Vendor Management Capability Development Program

Insurance Industry Expertise

Whitepaper: 7 Steps to Developing a Cloud Security Plan

Successful Implementation of Enterprise-Wide Information Governance

Domain 1 The Process of Auditing Information Systems

Continuous Monitoring and Auditing: What is the difference? By John Verver, ACL Services Ltd.

Transcription:

Our Services Unlocking IT Value - Transforming IT Enabled Investments into Business Value

Our core services IT Auditing IT Governance Consulting IT Projects Advisory Training Enterprise Risk Management Nurturing Enterprise Success The impact of emerging technology is out spacing the Governance, Security, and the Assessment of IT Risks. To provide beyond the obvious to business - today s auditors need to change their approach from traditional IT audit focus areas to emerging technology. Tichaona Zororo, CIA, CRMA, CISA, CISM, CRISC, CGEIT

IT Auditing Introduction The role of IT has developed into a nerve centre of most organisations. IT has become an intrinsic and pervasive component for business, used in the sustaining and extending of enterprises strategies and objectives. The impact of emerging technology cloud computing, big data, mobility, consumerisation, social media and the Internet of Things is permeating every aspect of business. Today more than ever more and more forward looking organisations are using IT to build sustainable competitive advantages. Whilst IT business enabled opportunities are huge and can separate winners and losers the risks if not checked are catastrophic. IT auditing assurance and consulting has in turn evolved from checklist reviews focused on only providing audit control deficiencies and recommendations to a strategic enterprise function in achieving of business strategies and objectives. Traditional approaches to IT assurance and advisory are no longer adequate to improve enterprise operations and add-value to business. Our People EGIT Enterprise Governance of IT (PTY) LTD Business Partners have in-depth experience and qualifications to provide risk based audit services that address IT matters affecting your specific business. EGIT goes beyond traditional IT auditing check list services. Our audits are driven by an in-depth understanding of our client s business environment and building lasting relationships with all stakeholders whilst maintaining our independence to provide value-add IT audits and communicate deeper insights that grab senior management and audit committee s attention. Our IT auditing services include: Application Controls Reviews Risk Based Review of Input, Processing, Interface, Work flow systems reviews Credit systems reviews Payroll Systems reviews Payments/Finance systems Interface systems Banking systems Manufacturing systems Middle ware Understanding Your Business Environment to Deliver Value Business Integrated Audits Risk Based Compliance and Substantive Combined Review of System and Business (Manual) Input, Processing, Interface, Master Data and Output controls: Business processes reviews combined with: Work flow systems reviews Credit systems reviews Payroll Systems reviews Payments/Finance systems Interface systems Banking systems Manufacturing systems Middle ware IT Infrastructure and General Controls Reviews IT Governance and strategy reviews Business Continuity/Disaster Recovery Change Management Incident/Problem management ICT Security: Logical security access controls Governance of Identity and Access management Toxic Combinations Operating systems Database reviews Network reviews Outsourced IT environments IT Performance and Capacity Planning IT Human resources SSAE 16 - Former SAS 70 Audits Internal IT Audit Services

IT Governance The challenge confronting today s corporate world is no longer about implementing information technology. It is about unlocking IT enabled value through the aligning of business objectives with information technology strategy, measuring the performance of information technology, realising the perceived value from IT, managing the risk of using information technology (business value preservation), managing information technology resources (resource optimisation) and business assurance process (convergence). The tone at the top has become imperatively crucial in the business governance of IT and we at EGIT aim to assist business organisations to tactically align their Information Technology (IT) strategy with the business strategy, ensure IT enterprise resources are used responsibly, manage organisational risk appropriately, deliver value, integrate the assurance process and measure the effectiveness and efficiency of IT in extending and sustaining enterprise wide strategy. Our People EGIT Enterprise Governance of IT (PTY) LTD Business Partners engage closely with business executives- CEOs, COOs, Director Generals, Deputy Director Generals, Generals, CFOs CIOs and CISOs to unlock IT value to achieve business strategies, objectives and goals. We understand that boards of directors and management need to have a deeper understanding of the business strategy, craft a framework to align information technology with business (strategic alignment), make decisions (manage resources) and monitor progress (performance measurement, sustainability and accountability). Creating Sustainable Enterprise Success Through IT Enabled Investments Enterprise Governance of IT is not about just keeping the lights on (Fire Fighting). It is not about the CIO presenting around the mahogany table once in every year. It is not about the Board learning new IT enabled business models through the press. It is about the Board proactively engaging in IT enabled business models to drive, sustain and extend enterprise strategy Tichaona Zororo, CIA, CRMA, CISA, CISM, CRISC, CGEIT Our IT Governance services include: IT Business Strategy Alignment Emerging Technology (Cloud Computing, Mobility, BYOD, Big Data, IoT ) Advisory IT Governance Implementation Assessments IT Governance implementation Using COBIT 5 Advisory IT performance management Business processes integration Convergence and processes optimisation IT Benefits Realisation/Value Delivery IT Resource Optimisation Implementing IT Governance framework: Structures (IT Steering Committees, IT Strategy Committees, IT investment Committees) Policies Processes Standards Procedures Network reviews Governance of IT Outsourcing

IT Projects Advisory Unlocking IT Value Optimising Benefits Realisation The pace of technology innovation today is happening at unprecedented speed growing by leaps and bounds. IT has become a crucial component for building sustainable competitive advantage. More and more organisations are investing in large IT enabled business changes (IT Projects) to replace their legacy systems, change business models and take advantage of the huge business benefits from new technology solutions. World-wide investments in IT enabled business change initiatives are running into billions of dollars - over 60% of total organisational expenses in most cases. The risks involved in implementing these projects are huge. They range from failures to meet business requirements (performance expectations), scope creep inevitably leading to budget and time creeps, litigation, reputational loss and high staff turnovers due to delivery pressures. According to recent researches 50% of IT projects run 45% over budget, and 7% over time while delivering less than 56% less value than initially predicted too often threatening the very existence of the company. Despite these glaring risks senior Line of Business executives are not proactively involved in the Governance and Management of the IT initiatives and the Board is rarely updated with vital insights and foresights on such projects. Our Approach At EGIT we believe that the Board, Senior Executives and risk professionals should be involved with IT initiatives from ideation (business requirements definition), business case to post implementation benefits realization. We focus not only on traditional IT projects considerations such as schedule and budget but on key enterprise unique selling plusses such strategic alignment and benefits realisation. We have the boldness to advise enterprises to wind IT initiatives if assessments indicate that they are no longer in line with their business objectives. Our IT projects assurance and advisory services EGIT Enterprise Governance of IT (PTY) LTD provides a variety of services to assist companies, government and local municipalities with their IT Projects. We provide the following IT projects assurance and advisory services from ideation phase, requirements specification, business case, development, testing, implementation and post implementation: Project Governance (setting structures and processes) and Management (PMO) advisory services Ongoing and phase project risk assessments Governance of 3rd parties. Post implementation support Post implementation governance and assurance Development of IT project methodologies Benefits realisation Training Executives and management on IT projects Governance and management Our Business Partners are qualified and have in-depth experience in implementing IT projects across all industries.

Training Tailored to Deliver Business Value Our Training Services Include: School of IT Advisory All our Courses are available in-house. Should your organisation have a number of people or multiple sets to train there are cost savings advantages. In addition it provides an enterprise wide opportunity to discuss and resolve organisational issues which is a major attraction of such training. The impact of emerging technology (ET) is pervading almost every aspect of business forcing enterprises that want to lead in today s business environment to adopt and adapt to new business models enabled by IT. Cloud Computing, Social Media, Big Data (Strategy), Mobility and Employee Owned Devices (EOD) are changing the way business is contacted. The impact of ET is out spacing the Governance, Security, and the Assessment of IT Risk. The challenge facing many organizations is the skills sets required to sweat ET in a way that optimizes benefits realization at acceptable risks. New technology is not only shifting traditional business models but is demanding business and IT staff to up their knowledge and skills to fully realize the business benefits. Organisations that are lagging on up-skilling their Business and IT staff run the risk of becoming redundant or losing their market share. Our People 1. COBIT 5 Training: Introduction to COBIT 5 COBIT 5 Foundation Certificate Training & Examination COBIT 5 Implementation Certificate Training & Examination COBIT 5 Assessor Certificate Training & Examination 2. Emerging Technology: Governance & Auditing of Social Media Governance & Auditing of Cloud Computing, Consumerisation & Big Data 3. IT Auditing: Risk Based IT Auditing Master Class 4. Corporate Governance of IT: IT Governance for the Public Sector IT Governance Business Continuity & Disaster Recovery IT Outsourcing and Service Level Agreements Master Class 5. Certification Review Courses: CISA Review Course CISM Review Course CIRISC Review Course CGEIT Review Course EGIT Enterprise Governance of IT (PTY) LTD Business Partners are equipped with up-to-date industry expertise and have in-depth experience to provide training on emerging technology, governance and management of IT. Our Business Partners are acknowledged subject matter expects in COBIT 5 and many emerging technology white papers with comprehensive industry experience in the implementation of current technology and ET enabled business changes.

Enterprise Risk Management Enhancing Enterprise Success The risks the enterprises face today are not only related to the loss of revenue but also include strategic risk, environmental risk, market risk, credit risk, operational risk and compliance risk. The interest in Enterprise Risk Management (ERM) has increased in recent years. Boards must acknowledge that increased risk management rigor and structure are increasingly expected by regulators, credit rating agencies, institutional investors, customers and the courts. Managing risk well has become a key element of sustained business success. Our Enterprise Risk Management Services We assist the Board, Audit and Risk Committees, Senior Executives, Management and General Staff through assessments, advisory and training in the following ERM services: Boards are often told of hundreds or even thousands of control deficiencies from spot in time tick the box reviews which report Top 10 or Top 20 control deficiencies drawn from the risk register rather than key business objectives that have the highest risk exposures. Many boards are grappling with the need to transition from managing risks with limited formal and visible processes and structures. The Board should demand regular reports on the current residual risk status of strategic and core business objectives. Aligning Risk appetite and strategy Enhancing risk response decisions Reducing operational surprises and loses Identifying and managing cross-enterprise risks Providing integrated responses to multiple risks Seizing opportunities and improving deployment of capital A stove pipe control centric approach that is based on invariably disintegrated small portions of enterprise risk universe and provide disintegrated subjective opinions on control effectiveness amongst various enterprise risk professionals and often whose materiality is always questioned by the audit and risk committee will quicken the demise of an enterprise. Implementation of Risk Framework: Risk Governance Risk Evaluation and Risk Response Our People EGIT Enterprise Governance of IT (PTY) LTD Business Partners are Certified in Risk and Information Systems Control (CRISC) and Certified in Risk and Management Assurance (CRMA) with proven experience in Enterprise Risk Management. At EGIT we believe that the risk awareness culture start with Board and Senior Executives and extend all the way down the organisation. We provide an Integrated Risk Management approach which integrates Enterprise Risk Management with the overall Enterprise Strategy. Our approach focuses on key enterprise wide strategic areas and ensures that the Board and Senior Executives are constantly provided with regular easy to understand risk insights that are linked to key enterprise strategic objectives. Our risk assessments and advisory service are designed to align with specific enterprise wide revenue, market share and cash generation, costs reduction, process optimisation, product quality, customer service, safety, fraud prevention, legal and regulatory compliance requirements objectives and other critical dimensions necessary for sustained enterprise success. We do this without neglecting the plausible risk management approaches and go beyond subjective control centric risk registers.

+27 11 234 2597 +27 73 298 9606 consult@egit.co.za EGIT Enterprise Governance Information Technology EGIT Enterprise Governance of IT (Pty) Ltd @entergovit EGIT Enterprise Governance of IT (Pty) Ltd www.egit.co.za Contact us today 2014 EGIT Enterprise Governance of Information Technology (Pty) Ltd. IT Advisory Firm Registration Number: 2012/188059/07 VAT Number: 4310263423 Tax Number: 9252281184 All marks used are the property of their respective owners

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information