GRC

Governence, Risk and Compliance

Information Security

Business Continuity Management

IT GOVERNANCE, RISK AND COMPLIANCE

The financial sector is subjected to an increasing number of regulations and market expectations for solid governance, risk and compliance.

We have long experience in both policy development and in the tailoring of management and reporting processes required to make policies come alive and ensuring IT governance, risk and compliance are well aligned with external and internal requirements.

With IT operations often spread across a number of organizational units and vendors, it may be challenging to accomplish the level of control required. It takes more than well written policies.

INFORMATION SECURITY

With modern technology and business set ups, it becomes increasingly important to control the availability, integrity and confidentiality of information.

In many modern organizations, information is one of the most valuable assets. We help organizations establish the level of information security that matches their needs. Our experience include establishing ongoing compliance with information security standards such as the ISO 27000-series and PCI DSS.

BUSINESS CONTINUITY MANAGEMENT (BCM)

All events cannot be foreseen. Sooner or later most organizations will find themselves facing a situation where normal management procedures are not sufficient to ensure business continuity.

A poorly managed crisis situation can be very costly and severely damage the reputation of an organization. On the other hand there are many examples of organizations that have managed to strengthen their brand by displaying effective management of a crisis. The trick is to invest, yet not over invest in BCM. Our experience spans from establishing a complete BCM framework to test and adjust specific plans and facilitating crisis exercises.