Our Services

The majority of organisations today are highly reliant on information systems, which are constantly augmented, increasingly sophisticated and extensively networked. This increased use of complex packages, outsourcing and greater networking means that there is greater interdependence and higher risk.

Ernst & Young's Global Information Systems practice is a leader in the provision of IT security and assurance services, with a proven track record and outstanding reputation for reliability and trust in the market place. Our solutions are tailored to help business leaders address their critical IT issues, and range from IT investment and security strategies through to deployment of cost effective solutions.

The Challenge		Examples of some of our solutions to address these challenges
IS Governance and Management
IS/Business alignment Oversight and guidance of IS/IT in the business Cost effective and fit for purpose information systems		IS Strategy Advisory Performance Management and Benchmarking Value of IT Spend/ROI/Cost Rationalisation Outsourcing Advisory including Offshore Investigations and Dispute Advisory Third Party and Regulatory Reviews
Programme Assurance
Challenges and risks of managing complex and costly IT programmes and multiple parties Uncertainty about business cases and pressure to demonstrate ROI Projects running late or overrunning costs; Managing stakeholder or expectations		Portfolio assessment Project evaluation and risk assessment Point in time health-checks Continuous or periodic monitoring throughout a programme’s lifecycle Application (ERP) integrity and security design and assurance (SAP, Oracle, Peoplesoft, etc.) Benefit realisation reviews Programme Assurance over: –  Outsourcing –  ERP implementation –  Bid Management –  Business Change Programme –  Office moves etc
Information security
Securing the critical assets of an organisation Determining ‘how much security is enough’ and the priorities Rapidly evolving technologies, increased complexity of IT risks, cost of security administration, reducing and mitigating security breaches		Fully outsourced or co-sourced solutions Individual solutions include: –  Security strategy –  Attack and penetration testing –  Risk assessment –  Incident response –  Security architecture and design
Business control process and data analytics
Inaccurate or poor quality data and/or control weaknesses result in: Inappropriate business decisions Inaccurate payments to suppliers Inability to detect fraud, duplicate payments etc		Providing one-off or continuous assurance, including: Analytics-online Data conversion assurance services Data quality services
IT internal audit
Organisations need to: Align risk coverage with business priorities Optimise efficiency and effectiveness of IT internal audit function Address difficulties of recruiting and maintaining a cost effective and technically skilled IT internal audit function		Assessment of the current IT audit function Full IT Internal Audit outsourcing Partnering Supplementing existing IT audit resources in specific areas