IT Enterprise-wide governance, risk and controls - Ernst & Young - New Zealand

IT Enterprise-wide Governance, Risk and Compliance

• IT risk management and compliance — IT risk management helps organizations to identify and assess their most important IT risks; to mitigate the risks by designing and implementing efficient measures; and to develop a risk dashboard for continuous monitoring of the status of all risks. Compliance services assist clients with the operating effectiveness of controls processes and alignment with regulatory requirements.
• EGRC technology enablement advisory and implementation — helps clients to enhance the effectiveness and efficiency of their EGRC functions by selecting, implementing and operating the most appropriate software tools.
• Information management and analysis — helps organizations access the vast amounts of operational data within their IT systems, and unlock critical information to improve business insight.
• IT effectiveness — provides a roadmap of potential IT Effectiveness improvements designed to help the IT function fulfill the evolving IT mandate of managing risk, rationalizing costs and creating value for the entire company.
• Our IT effectiveness services include:
  
  • IT strategy development: assists the development or re-development of an IT strategy.
  • IT process improvement: advises organizations on the improvements to IT operations processes.
  • IT outsourcing: provides objective, independent and fact-based assistance in approaching IT outsourcing decisions.
  • IT governance: advises organizations on the design and execution of improvements to IT governance processes designed to increase compliance with a leading practices and standards.
• IT program advisory — helps protect investments in IT programs and provides increased confidence that programs will be delivered successfully, fulfill their objectives and achieve the anticipated benefits.