IT Audit

Contact us or submit an RFP

Our Expertise

Take control of your infrastructure and technology controls

Technology is the backbone of your business and fundamental to the financial reporting process. As your business and systems evolve, the dynamic between IT, financial applications, business processes, transactions, and financial statements will become more complex. It’s crucial to have a deep understanding of your IT controls environment so your organization can continue being successful.

That’s where our team comes in. We assess management’s understanding of risk, organizational compliance requirements, and key functional and operational controls to establish a risk-based IT audit plan. We’ll work collaboratively with your internal audit department to improve the effectiveness of your security controls and align your IT controls environment with organizational policies and strategic priorities. By assessing your IT environment through the lens of people, process, and technology, we’ll work to understand your systems, business process, infrastructure, and general controls environment to evaluate the effectiveness of your internal controls.

Our team of IT audit professionals have experience working with IT environments of all shapes and sizes, from multi-national public companies to small not-for-profit organizations. We take a risk-based approach, providing you with a roadmap for building an effective IT audit plan and strategy while meeting various financial, security, and privacy regulations.

IT audit solutions tailored to you

IT audits are an important tool to assess your organization’s changing IT risk profile. Whether you have plans to replace your current systems, want to understand the impact of discrete changes, or want to ensure your core IT processes are operating as intended, our experts will serve as your trusted advisor every step of the way.

External IT audit support

Our team of experienced auditors work as integrated members of the external audit team to evaluate IT controls in support of the following regulatory frameworks:

Internal IT audit support

Changes in your environment, including new technology, mean new gaps and vulnerabilities that could leave your organization exposed. We’ll identify areas where your organization can improve your internal controls to be more proactive in managing your IT exposures.

IT application controls

We’ll assess your application controls and verify your systems are designed to protect the completeness and accuracy of your data.

IT general controls (ITGC)

Our team has evaluated IT general controls for IT environments of all shapes and sizes. We can help you identify and evaluate appropriate IT general controls while providing sustainable recommendations for your organization.

IT operational audit support

Effective operations lead to a more secure environment. We’ll test and assess your operational IT areas with the highest risk and provide suggested improvements to allow your organization to do more with less.

IT risk and controls assessments

Unsure of how your organization stacks up to the myriad of IT compliance frameworks? Our team works day-in and day-out in these frameworks and can help you understand where your gaps are to support your next strategic initiative:

  • NIST
  • CSC (formerly SANS)
  • COBIT
  • Cloud Security Alliance
  • HIPAA
  • SWIFT
  • FINRA
IT system controls audit support
Our experts can provide recommendations to enhance current security controls and protocols in place for your IT system and guide you with future-focused ideas.
Penetration testing
sing our threat emulation methodology, we’ll conduct internal and external penetration testing to simulate a real hacking incident and train your people on how to respond efficiently and effectively.

Insights

More Insights
Business professional holding a laptop while explaining something to another colleague.

Six steps to strengthening your cybersecurity program

Article / 6 min read
Image of a digital LED wall

Seven-point cybersecurity assessment: Identify your organization’s digital risks

Article / 3 min read
Man at computer reviewing customer data protection protocols

Protecting customer data: Risks, requirements, and how to keep your company secure

Article / 4 min read
Group of coworkers in a business meeting.

Turning risk into opportunity: Five questions to ask

Article / 8 min read
A business professional working on a laptop at their desk

Cybersecurity insurance: Once optional, now essential

In The News / 2 min read
Picture of a young woman navigating the streets of a smart city.

Risk versus reward: Six considerations for smart cities

Article / 7 min read
Return to top of section

Case Studies

See all case studies
Image of people meeting
April 23, 2017

Cybersecurity testing for credit union

A regional credit union strengthens security environment, passing its regulatory exam with flying colors.
Case Study / 1 min read

Client Experience

The right people working with you

Your cybersecurity controls and incident resiliency are just one aspect of your success. We build lasting, collaborative relationships and entrench ourselves in your business to get to know you better and support your goals beyond the services we provide. Our team of IT audit professionals coordinates directly with members of your organization’s IT department and integrates with the financial audit team to provide a comprehensive picture of your infrastructure and controls environment.

Our cybersecurity experts have been serving clients for over 30 years, and we’ll be with you as you stay on the path to long-term success. With our team, you’ll receive the best of both worlds: high-quality service and a partner you can trust.

Headshot of Jennifer Zanone. Jennifer Zanone

Principal

+1-303-448-7024

Headshot of Colin Taggart. Colin Taggart

Partner

+1-248-223-3235

Headshot of Ben LeClaire. Ben LeClaire

Principal

+1-847-628-8865

Meet Our Team