Information Systems & Risk Assurance
IT General Controls Reviews & Assessments
Assessments that provide insight and help you make decisions
Our professionals will work with you to define the specific areas you need reviewed or assessed and will develop specific engagement plans for each area assigned based on our internal and industry recognized audit programs as well as against leading practices and your standards. We provide a deliverable of any findings noted, the impact of those findings, and recommendations that incorporate relevant leading practices giving you the information you need to remediate any areas of concern.
Practice Lead
Patrick Morin
Principal
Pat specializes in AICPA’s SOC for Service Organizations (SOC 1® and SOC 2®), Sarbanes-Oxley Act, information technology controls, and data extraction and analysis. Pat also leads the firm’s ESG-related services, assisting clients with ESG planning and reporting efforts.
Assessing your information technology needs in the context of your business and industry
IT general controls reviews and assessments are particularly helpful for organizations that are growing quickly and/or rely on IT to support their business strategy. As we conduct our assessments, our professionals will perform a review of governance and organizational structure; IT controls; applications; network; and infrastructure. Our assessment takes into account the technology needs of your operations, your business strategy and your industry.
How We Can Help You
- SSAE-18 & System and Organization Control (SOC) Reports
- SOX Compliance & Internal Control Review
- Agreed-Upon Procedures
- Compliance Assessments
- Disaster Recovery and Business Continuity Planning
- Cybersecurity Assurance
Related Services
- Business strategy
- Information technology strategy
- System selection and implementation
- Business process enhancement
- Applications and infrastructure review