Risk and Controls Services

PricewaterhouseCoopers' Risk and Controls Services [RCS] practice is a key component of our global firm. As such, RCS is a single global practice and business unit of PricewaterhouseCoopers. Our professionals use common technologies, methodologies, and learning and education in order to work dynamically as a single global team.
 

We take pride in understanding our client's business issues and bringing the right people and skills necessary to solve the most complex business issues. Our professionals are specialized by both area of risk experience and industry, ensuring our risk management solutions reflect the culture, countries and regions where our clients do business.
 

As the world's largest risk management consultancy, we are uniquely capable of serving the needs of geographically dispersed clients. With over 5,000 RCS professionals located in every significant business center of the world, we have the ability to scale our solutions to the most complex client needs. Our local firm is staffed with over twenty professionals, with information technology, accounting and business process backgrounds.
 

RCS professionals specialize in a thorough spectrum of risk management and performance improvement capabilities. Our primary business is helping clients deliver enhanced and sustainable corporate value through the improvement of performance and the management of risk across critical business processes, systems and people.

The primary services provided by our RCS professionals are:

Systems and Process Assurance (SPA) - provides services related to controls around the financial reporting process, including financial business process and IT management controls. Serving both audit and non-audit clients, SPA provides:

  • Financial and operation applications/business process controls reviews
  • Database security controls reviews
  • IT general controls reviews
  • Infrastructure security reviews
  • Third party assurance and attestation services
  • Due diligence on systems and controls
  • Pre- and post-implementation systems reviews
  • Data services (CAATs)
  • Computer security reviews

Internal Audit Services (IAS) - helps companies improve the value and performance of the Internal Audit function by providing solutions tailored to client situations and needs. Services we provide include:

  • Internal Audit outsourcing and co-sourcing
  • Internal Audit transformation
  • Quality Assurance Reviews
  • Start up Internal Audit services

IT Advisory Services (ITAS) - performs professional Information Technology assessments and controls assurance. Serving both audit and non-audit clients, IT Advisory provides:

  • Penetration testing
  • Threat and vulnerability assessments
  • Network and System security assessments
  • Web application security assessments
  • Wireless security assessments
  • Information Technology risk assessments
  • Information Technology gap analyses
  • Business Continuity assessment/development programs
  • Information security and policy framework benchmarking
  • IT governance assessments

Regulatory Advisory & Assurance Services (RAAS) - works with the relevant authorities to develop and refine legislation and guidelines, and assists both audit and non-audit clients in ensuring compliance requirements are met:

  • Regulatory program development services
  • Regulatory seminars and training
  • Compliance reviews and assessments