Specifically Engineered for High-Tech Companies

Similar documents
Insurance Industry Expertise

Leveraging Your ERP System to Enhance Internal Controls

Effective Model Risk Management for Financial Institutions: The Six Critical Components

Internal Audit Leads the Way to Performance Improvement

ORACLE FUSION MIDDLEWARE PROFILE

Cybersecurity The role of Internal Audit

Past vs. Present: Third Party Risk

Reshaping the enterprise for the future of work. Are you ready?

Effective AML Model Risk Management for Financial Institutions: The Six Critical Components

Third-Party Risk Management for Life Sciences Companies

Optymyze Sales Performance Software

The power of collaboration: Accenture capabilities + Dell solutions

Top 10. Ten reasons customers choose SAP to help transform their business. Copyright/Trademark

A New Decade, a New Internal Audit Model

Inspiration for what is possible Inspiring new possibilities for your business with PwC and Oracle

THE #1 MANAGED CLOUD COMPANY RACKSPACE WITH EMC STORAGE

High Value Audits: An Update on Information Technology Auditing. Robert B. Hirth Jr., Managing Director

Commvault - Modern Data and Information Management. Aleksandar Antić Commvault Regional Sales SEE Region

Crowe Automotive Accelerator for Microsoft Dynamics AX

THE OPEN CLOUD COMPANY RACKSPACE WITH EMC STORAGE

Tagetik: Performance with Passion

Information Technology

Well-Documented Controls Reduce Risk and Support Compliance Initiatives

Sun and Oracle: Joining Forces in Identity Management

Product Strategy Update OTM SIG Conference

The Power of the Platform

Cybersecurity. Considerations for the audit committee

Simplify and Automate IT

An Oracle White Paper January Access Certification: Addressing & Building on a Critical Security Control

Fortify. Securing Your Entire Software Portfolio

Internal audit value optimization for insurance organizations

SAP PRACTICE AT INFOSYS

Simplify and Automate IT

Copyright 2012 Microsoft Corporation

Moving your enterprise systems to the cloud? What do you need to know to manage the risks? Jamie Levitt, Director

Cloud Computing An Auditor s Perspective

10 Questions to Ask Your On-Demand Contact Center Provider. An Oracle White Paper September 2006

IT Cloud / Data Security Vendor Risk Management Associated with Data Security. September 9, 2014

Protecting What Matters Most. Bartosz Kryński Senior Consultant, Clico

It s critical to be able to correlate threats pre-emptively and respond to them immediately.

Jeff Warson, GCIH, SCPS, CISSP, CCSK Sr. Principal Security Strategist Symantec Corpora5on

Cyber security. Cyber Security. Digital Employee Experience. Digital Customer Experience. Digital Insight. Payments. Internet of Things

Hewlett Packard Securities Analyst Meeting #hpesam2015

Cyber Security Auditing for Credit Unions. ACUIA Fall Meeting October 7-9, 2015

Accenture Life and Annuity Software. Achieving high performance through faster time to market, increased agility and improved cost control

Third Party Risk Management 12 April 2012

Chief Security Strategist Symantec Public Sector

Address C-level Cybersecurity issues to enable and secure Digital transformation

2012 North American Managed Security Service Providers Growth Leadership Award

Solution Viewpoint Governance, Risk Management & Compliance Insight ERP MAESTRO. March Automated Security & Access Controls Through the Cloud

Governance, Risk, and Compliance (GRC) White Paper

How To Buy Nitro Security

Revolutionize your Enterprise with IT-Infrastructure-as-a-Service. Thomas Riley International MD 17 th April 2009

Managing data security and privacy risk of third-party vendors

Data: To BI or not to BI?

Strategies and Best Practices to Implement a Successful Data Loss Prevention Program Sebastian Brenner, CISSP

Security is a Partnership

Preemptive security solutions for healthcare

Enterprise Cloud Services

Efficiently Protect, Manage and Access Big Data. Nigel Tozer Business Development Director EMEA

CA Systems Performance for Infrastructure Managers

CA Virtual Assurance for Infrastructure Managers

STREAM Cyber Security

How To Understand And Understand Risk Management

Reducing Cyber Risk in Your Organization

INVESTOR PRESENTATION. Third Quarter 2014

Tagetik: Performance with Passion

7 INSIGHTS FROM OUR 2014 CLOUD ADOPTION SURVEY

An Oracle White Paper November Financial Crime and Compliance Management: Convergence of Compliance Risk and Financial Crime

Trends in Information Technology (IT) Auditing

Symantec to Acquire Clearwell Systems, Inc. May 19, 2011

Cybersecurity Strategic Consulting

Private Cloud: Key considerations for an insurance agency

IT Insights. Managing Third Party Technology Risk

Overview of F5 Networks. Fatih Bilger Senior Systems Engineer, Prolink.

Open Source: The New Data Center Standard

IT audit updates. Current hot topics and key considerations. IT risk assessment leading practices

HERE TODAY, HERE TOMORROW: How SAP Predictive Analysis can help your business stay ahead

Gartner Magic Quadrant Sources and Disclaimer

CYBER AND PRIVACY INSURANCE: LOSS MITIGATION SERVICES

Agenda Overview for Social Marketing, 2015

Amazon Web Services. For Government, Education, and Nonprofit Organizations. Jakob Huhn. Partner Manager Benelux, Public Sector

Testing the Security of your Applications

The SDN Opportunity. Erik Papir Director, Global Technical Marketing & Competitive Intelligence HP Networking May 2014

Having Trouble Explaining and Predicting Net Revenue?

Cloud Services for Microsoft

Italy. EY s Global Information Security Survey 2013

Enterprise Identity Management Reference Architecture

NetApp SANscreen: come controllare i costi senza sacrificare la service quality. Roberto Patano Business Development Manager NetApp Italia

How To Help Your Business With Data Security And Privacy

Identity and Access Management. Key Initiative Overview

Business Intelligence with SharePoint 2010

The Changing IT Risk Landscape Understanding and managing existing and emerging risks

Cloud Computing. Key Initiative Overview

Presentation title goes here

Any Partner. Any System. Anywhere. IBM Sterling Business Integration Suite

PCI Policy Compliance Using Information Security Policies Made Easy. PCI Policy Compliance Information Shield Page 1

Transcription:

Crowe Risk Consulting Services Specifically Engineered for High-Tech Companies Audit Tax Advisory Risk Performance

Technology companies face an array of risks, many of which are unique to the high-tech sector. Crowe Horwath offers comprehensive, customized risk management services that are specifically engineered for hightech companies and delivered by experienced industry professionals. 2

Crowe Risk Consulting Services: Specifically Engineered for High-Tech Companies The Technology Sector s Unique Risk Profile Technology companies differ from other businesses in many ways, particularly in their approach and exposure to certain categories of risk. Compared to their counterparts in traditional industries, high-tech companies are often characterized by several distinctive factors including: Appetite for risk. Most high-tech companies recognize risk as an essential and sometimes even desirable aspect of business. They approach risk from an engineering perspective that seeks to adapt and mitigate risk rather than avoiding it. High-velocity workflows. Technology companies are legendary for their rapid research, development, production, and delivery cycles. This speed has a direct effect on risk exposures. Commitment to research. Compared to more conventional businesses, high-tech companies make significantly higher investments in R&D. Budgets equivalent to 5 percent, 10 percent, or even 20 percent of revenues are not unusual. Demand for talent. Technology leaders consistently seek new ways to attract and retain talented workers, managers, and executives. This highly competitive environment also affects how companies approach risk. Creative destruction. Technology companies do not hesitate to cannibalize their own product lines, engineering new solutions and applications that quickly drive their own existing products into obsolescence. Crowe has developed a consulting approach that recognizes these attributes and offers an array of specialized risk management services and solutions that directly address the inherent challenges these characteristics present. www.crowehorwath.com 3

Exclusive Crowe Research: The Risks Facing Technology Companies Today 28% 26% 3% 3% 14% 4% 5% 7% 10% As part of their commitment to serving the technology sector, Crowe professionals continually study the major risk factors facing the industry. Most recently, Crowe analysts identified the risk factors that were mentioned in the Management Discussion and Analysis sections of the 20 largest publicly traded U.S. high-tech companies Securities and Exchange Commission Form 10-K filings. The companies examined represented four major subsectors: hardware, software, Internet hosting, and semiconductors. These references were documented and weighted in order to identify the most significant risks the industry must address as ranked by the industry s leaders themselves and shown in Exhibit 1. Exhibit 1: Technology Sector Risks Cybersecurity and Privacy Third-Party Management SOC/PCI/Cloud Readiness Sarbanes-Oxley Act (SOX) Compliance Open-Source Software Intellectual Property ERP Integrity New Product Development Other Source: Crowe analysis of 10-K filings of the 20 largest publicly traded U.S. high-tech companies. In analyzing the findings, these risks are organized into two levels of priority: 1. Major Risks IT system risks: With the integration of complex systems housing highly sensitive data, IT risks are of growing concern. Cybersecurity risks: The growth of cybercrime, data privacy, and the theft of sensitive data have been elevated major concerns. SOC/PCI/cloud risks: Compliance with Service Organization Controls (SOC) reports and payment card industry (PCI) standards becomes increasingly important with the integration of cloud technology. 2. Emerging Risks Third-party risks: Outsourcing of enterprise technology requires firm control of vendor-management risks. Open-source software risks: Although it can be highly advantageous in the enterprise IT environment, open-source software requires specialized risk management. New product development risks: A special concern in the technology industry, the security and reliability of new products directly impacts both earnings and reputation. Research of this nature not only helps Crowe risk consulting professionals stay abreast of current industry issues, it also offers valuable insights to Crowe clients and industry leaders. 4

Crowe Risk Consulting Services: Specifically Engineered for High-Tech Companies Strategy Crowe Risk Consulting Services: Focused and Specialized The Crowe dedicated technology sector risk consulting group is focused on helping high-tech businesses apply sound risk management practices in a way that not only identifies and mitigates risk but also helps to build long-term enterprise value. By putting together the right team for each specific engagement, and by drawing on experienced professionals strengths and specialized skills, Crowe helps clients in a broad array of high-tech industry sectors, including: Semiconductor Computer hardware Software Internet hosting Exhibit 2: The Crowe Sustainable Risk Management Framework Leverage LEADERSHIP INTEGRATION Report Change Management Assess INFORMATION Respond Monitor Culture Organization Working within these major subsectors, Crowe risk teams help clients build on the Crowe Sustainable Risk Management Framework (as shown in Exhibit 2) to address specific needs across all three recognized categories of risk: Business Risk Internal audit Capital audit Royalty assessments Board adviser Sustainable Accounting Standards Board consulting Consolidated risk profiles Risk mitigation leveraging analytics Regulatory compliance services Enterprise risk management Technology Risk IT general controls COSO assessment Cybersecurity consulting Supplier/third-party risk management SDLC review New product development risk assessment Open-source software risk assessment SOC/PCI/cloud readiness assessment ERP integrity evaluation Sarbanes-Oxley consulting Intellectual property protection Regulatory Compliance Independent review organization services Ethics and compliance audits and monitoring Regulatory compliance services www.crowehorwath.com 5

Gartner 2015 Magic Quadrant Crowe Horwath Global Risk Consulting has once again been named a Challenger by Gartner, Inc., in the Magic Quadrant for Global Risk Management Consulting Services, by Jacqueline Heng and John A. Wheeler. The full report can be accessed at www.crowehorwath.com/gartner. Culture of Innovation As part of an international global accounting network with a presence in more than 120 countries, the Crowe approach is focused on understanding how best to accomplish results in every type of corporate culture and environment. One key to this effort is a relentless commitment to innovation that manifests itself in several notable attributes: Crowe Triple Threat Strategy The Crowe strategy combines technical knowledge, industry expertise, and applied technology to deliver customized solutions to meet clients needs. Technology-Based Approach Crowe employs a growing suite of in-house developed applications, all of which originated as responses to individual client needs. Security and Privacy Laboratories The Crowe R&D investment in this area has yielded valuable results to clients, developing tools and building an environment in which to conduct industry-leading internal and external penetration testing. Source: Gartner Magic Quadrant for Global Risk Management Consulting Services November 5, 2015, Jacqueline Heng, John A. Wheeler Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. All statements in this report attributable to Gartner represent Crowe Horwath Global Risk Consulting s interpretation of data, research opinion or viewpoints published as part of a syndicated subscription service by Gartner, Inc., and have not been reviewed by Gartner. Each Gartner publication speaks as of its original publication date (and not as of the date of this [presentation/report]). The opinions expressed in Gartner publications are not representations of fact, and are subject to change without notice. 6

Crowe Risk Consulting Services: Specifically Engineered for High-Tech Companies www.crowehorwath.com 7

Contact Information Ray Cheung is a Director at Crowe Horwath LLP and can be reached at +1 415 230 4971 or ray.cheung@crowehorwath.com. Matt Bowser is a Principal at Crowe Horwath LLP and can be reached at +1 317 208 2432 or matthew.bowser@crowehorwath.com. About Us Crowe Horwath LLP (www.crowehorwath.com) is one of the largest public accounting, consulting, and technology firms in the United States. Under its core purpose of Building Value with Values, Crowe uses its deep industry expertise to provide audit services to public and private entities while also helping clients reach their goals with tax, advisory, risk and performance services. With offices coast to coast and 3,000 personnel, Crowe is recognized by many organizations as one of the country s best places to work. Crowe serves clients worldwide as an independent member of Crowe Horwath International, one of the largest global accounting networks in the world. The network consists of more than 200 independent accounting and advisory services firms in more than 120 countries around the world. www.crowehorwath.com When printed by Crowe Horwath LLP, this piece is printed on Mohawk Color Copy Premium, which is manufactured entirely with Green-e certified wind-generated electricity. In accordance with applicable professional standards, some firm services may not be available to attest clients. 2015 Crowe Horwath LLP, an independent member of Crowe Horwath International crowehorwath.com/disclosure RISK-16018-001A

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information