Technology and Security Risk Services
Market expectations include continued economic uncertainty and a commitment to increased connectivity with customers, suppliers and other third parties. Organisations are forced to continuously challenge these and related information system investments whilst addressing the alarming increase in information security threats.
Organisations are facing the challenges of building and maintaining an effective and efficient IT infrastructure and delivering cost effective business focused solutions whilst achieving demonstrable return on investment. Delivery challenges are frequently combined with a shortage of independent and commercial IS management and assurance focused personnel, resources, tools, knowledge and training, which can be particularly acute when key IS activities are outsourced.
Ernst & Young’s technology and security risk services business advisors focus solely on supporting the organisation’s business agenda. Our network of over 3,000 IS assurance and advisory professionals worldwide provides unparalleled depth of information system delivery, security and control experience and is independent of vendors, suppliers and internal organisational structures.
Our solutions are tailored to help business leaders address their critical IT issues, and range from IT investment and security strategies through to deployment of cost effective solutions.
2007 Global Information Security Survey results
Ernst & Young’s 10th annual Global Information Security Survey 2007 reveals that privacy has quickly become the 2nd strongest driver of information security practices. 1,200 organisations took part in the survey representing over 48 countries. 
705K, 32 pages
Data governance
Data governance plays a pivotal role in achieving regulatory compliance. This publication explores three current business priorities which in Ernst & Young's experience continue to prove challenging for many organisations to manage successfully.
- data protection and privacy
- documentation and records management
- Freedom of Information Act compliance.
A data governance framework will provide a sound platform for these imperatives, and this publication looks at the critical factors for a successful framework.
Successful IT in high performing organisations: The impact on business growth
Many organisations have made real progress in improving IT management and delivery, and integrating IT with business objectives to deliver tangible results. Ernst & Young undertook research to learn lessons from those companies that have succeeded in delivering value from their IT function. We held in-depth discussions with 60 c-suite business and IT leaders in 46 leading organisations. The results, discussed in this brochure, reveal that though great progress has been made by businesses in every sector, there is still significant scope for improvement and potential to reap further benefits. Find out more.
Profiting from experience: realising tangible business value from programme investment with Lessons Learned reviews
Profiting from experience examines why otherwise successful organisations fail to reap full value from programmes and projects by not learning the lessons from their experience. It explores what factors are critical for successful reviews and what pitfalls to avoid when conducting Lessons Learned Reviews. Find out more 814K
How do you manage your threats?
Create a secure business using penetration testing services>
Business demand for technology means organisations are vulnerable to attacks on information security. As the threats grow in frequency and sophistication, selecting and deploying effective countermeasures becomes increasingly challenging.
How can management maintain a constant view of the significant risks to their organisation?
Our answer is Penetration testing – rigorously and regularly – at both a technical and a business-focused level. Read about how Ernst & Young's Penetration testing services can significantly help manage your organisation's security.
Find out more 1.3Mb
Our services
The majority of organisations today are highly reliant on information systems, which are constantly augmented, increasingly sophisticated and extensively networked. This increased use of complex packages, outsourcing and greater networking means that there is greater interdependence and higher risk.
Ernst & Young's Global Information Security practice is a leader in the provision of IT security services, with a proven track record and outstanding reputation for reliability and trust in the market place. Our solutions are tailored to help business leaders address their critical IT issues, and range from IT investment and security strategies through to deployment of cost effective solutions. Learn more about our services.
Understanding IT governance
The critical role IT plays in most organisations makes the investment and risks too high to delegate responsibility for ITGovernance outside the board. We think it’s time for organisations to put IT Governance on the agenda. Take a look at the issues we’ve addressed and get smarter about IT Governance today.
Charting the course – the evolution and future of IT Internal Audit
Today IT auditors face a world where they must satisfy a very wide range of stakeholder expectations while mastering increasingly complex business structures, technologies and audit methods.
Supported by results from Ernst & Young’s first ever survey of IT Internal Audit, this report has been developed to help you chart the course ahead for the management of IT risk assurance. Find out more 441K