System & Process Assurance

In today’s business world, IT and financial reporting environments are becoming increasingly complex while even greater reliance is being placed on the information produced by these systems and processes. In addition, new regulations in many countries have put a greater emphasis on internal controls and often require independent assurance of the effectiveness of internal controls.

Attention to the design, documentation and operation of controls is critical to ensuring the accuracy and timeliness of information used for financial reporting and management decision-making.

Our Systems & Process Assurance practice (SPA) provides services related to controls around the financial reporting process, including financial business process and IT management controls. Serving both audit and non-audit clients, SPA provides:

  • Financial and operation applications/business process controls reviews (e.g. ISO/IEC 27001, ISO 9001)
  • Database security controls reviews
  • IT general controls reviews
  • Infrastructure security reviews
  • Third party assurance and opinion services
  • Compliance with other regulatory requirements
  • Due diligence on systems and controls
  • Pre- and post-implementation systems reviews
  • Project assurance services
  • Data services (e.g., data quality reviews)
  • Computer security reviews