See risk, take risk, manage risk

Capital projects and infrastructure

Manage risk and maximise value when planning, building, financing, operating and decommissioning capital projects and infrastructure:

• Organisational strategy and structure
• Process design and optimisation
• Project assessment
• Project outsourcing and managed services
• Technology and data, e.g. engineering and construction tech, project management

Crisis response and resilience

Build and transform resilience to provide stability across the organisation and respond confidently to crises, navigate disruption and emerge stronger with competitive advantage:

Crisis response

• Crisis strategy, governance and planning 
• Rapid, integrated crisis response 
• Reputation management, legal and regulatory support
• Recovery strategy and remediation
• Post-crisis review and analysis

Resilience

• Resilience maturity assessments
• Enterprise resilience design, implementation and review
• Specialist support in business continuity, disaster recovery, cyber resilience, physical security and supply chain resilience
• Crisis and resilience simulations 
• Technology enablement
• Managed services

Cyber

End-to-end cyber capabilities helping organisations build, assess and manage cybersecurity and data protection, and respond to incidents:

• Cyber strategy and governance
• Cyber risk management and assessment
• Threat intelligence
• Identity and access management
• Data security and privacy
• Cyber-technology design and implementation
• Incident management
• Cyber-regulatory compliance
• Third-party cyber reporting
• Managed services

Data governance

Design, implement and assess governance, processes and controls over data to establish its completeness, accuracy and validity and supports business operations, reporting and decision-making:

• Data-governance and risk-management framework
• Data-management processes and controls, including validation and testing
• Data privacy and protection
• Regulatory and legal compliance
• Enterprise technology environment over data, e.g. security, segregation
• AI governance
• Breach and incident response
• Forensic data analysis
• Data managed services

Enterprise risk and controls

Build, enhance, automate and test risk and control systems and processes to help anticipate and avoid hazards, build resilience and obtain confidence to manage risk and move forward:

• Enterprise Risk Management (ERM) design and implementation
• Macro risk management
• Risk assessments and reviews
• Controls design, implementation and testing
• Controls automation and optimisation
• Third-party risk management
• Third-party reporting
• Managed services

Enterprise technologies

Implement, optimise and secure enterprise technologies, including AI, to help improve risk management, transform processes, streamline controls and obtain actionable insights from data:

• Enterprise technology and cloud transformation
• Enterprise technology and cloud security, and resilience
• Process, controls and reporting optimisation, and automation
• User and access management
• AI trust and intelligent controls
• Integrated risk-management technology implementation
• Data governance and trust

Financial risk management

Transform and optimise financial risk management operations processes and technology to address complex commercial and regulatory requirements and support business transformation:

• Trading, market and liquidity risk management 
• Credit risk management and process optimisation
• Asset liability management 
• Capital management 
• Treasury-function strategy and structure 
• Treasury risk management and process optimisation
• Financial risk management technology design and implementation

Forensics

Use technology-driven forensic intelligence and analytics services to prepare for, respond to and emerge stronger from disruption caused by fraud, bribery and corruption, and other financial crime-related crises:

• Investigations and fact-finding
• Disputes, arbitration and claims
• Forensic technology and eDiscovery
• Anti-fraud, bribery, and corruption risk and controls
• Third-party and contract compliance
• Accounting investigations and expert witness support
• Regulatory enforcement and financial crime, including AML, CTF and sanctions compliance

Internal audit

Establish, transform and deliver leading internal audit (IA) capabilities, leveraging PwC’s advanced technology and delivery models, and the breadth of PwC technical and industry expertise:

• IA set-up, strategy and planning
• IA transformation and optimisation
• Co-sourcing and specialist audits, e.g. cyber, sustainability, data
• Outsourcing and managed services
• IA technology design and implementation
• AI and data-driven audits
• Training and talent development
• External quality assessments
• Audit committee effectiveness

Managed services

Standardise and execute risk-related processes in the first, second and third line using PwC’s cutting edge, global managed services infrastructure, technology, industry and subject expertise:

• Compliance monitoring and testing
• Controls testing and reporting
• Cybersecurity
• Data management and modelling
• Internal audit
• Regulatory reporting and remediation
• Third-party assessments and monitoring
• Sustainability testing and reporting
• Other risk-related managed services

Regulatory compliance

Optimising compliance capabilities and technology to identify, manage and comply with regulation, build trust with regulators and stakeholders, and gain competitive advantage from compliance:

• Compliance set-up, strategy and planning
• Compliance monitoring and testing 
• Compliance technology design and implementation
• Regulatory application readiness and review
• Regulatory remediation and reporting
• Integrated compliance
• Third-party reporting
• Managed services

Risk modelling

Combine advanced analytics expertise and technology to optimise and validate business data and models to manage risk, support decision-making, and unlock new insights and opportunities:

• Risk modelling, e.g. corporate strategy, transformation, deals
• Climate-risk modelling
• Financial modelling
• Insurance modelling
• Model and data governance and trust
• Model and data validation
• AI build and implementation
• AI model validation
• Derivative and hedge accounting audits

Sustainability Risk

Understand, assess and mitigate risks relating to sustainability management, regulation and reporting, and obtain confidence in the underlying systems, processes and data:

• Sustainability governance and risk management
• Regulatory compliance
• ESG controls design, implementation, and testing
• ESG systems and data validation
• Sustainability reporting assurance
• Controls over ‘greenwashing’ and ethical supply chain
• Managed services

Trust and transparency

Providing confidence to internal and external stakeholders and regulators over an organisation’s processes, controls, systems, data and reporting, including those relating to AI and sustainability:

• Third-party assurance and reporting, e.g. controls, cyber, compliance
• AI trust and assurance
• Sustainability trust and assurance
• Controls design and validation
• Project assurance