Technology Audit Services Protect and enhance value through data and technology We help organisations understand their key technology risks and how well they are mitigating and controlling those risks. Our team has deep expertise in recognised frameworks (COBIT, NIST, ISO, ITIL, FFIEC, CMMC etc.) and apply best practices from working with many of the world’s leading audit organisations. Our technology auditors and risk practitioners take a risk-minded and business-objective focused approach and are involved in assessing and advising on virtually every aspect of the way an organisation uses (or should be using) technology to protect and enhance enterprise value. Protect and enhance enterprise value through the evaluation of technology governance, systems, operations, and projects Survey September 26, 2024 From AI to Cyber - Deconstructing a Complex Technology Risk Landscape Protiviti’s global internal audit survey 2024 highlights the challenges and technology risk trends faced by internal auditors worldwide. Download the report. Read more Our Technology audit services Pro Briefcase Cybersecurity Security programme and governance audit, assessments against frameworks, security risk assessments and control testing programmes, ransomware preparedness, incident response, technical assessments (e.g., penetration testing, threat hunting), privileged access reviews, and system and device (e.g., IoT) testing. Pro Building office Cloud Cloud strategy audit and governance, security scans and assessments, assessments of cloud migration plans, controls over information access, and compliance with legal and regulatory mandates, effective implementation of the shared responsibility model, and assessment using the Well Architected Framework. Pro Document Consent Data Governance & Privacy Assessments of data management and data governance, data quality assessments, data privacy programme reviews, data loss prevention reviews, and assessments against regulatory requirements. Pro Document Files Project Risk Advisory Add an independent risk and controls audit lens to key enterprise projects for management, the audit committee, and applicable external compliance / regulatory entities. We partner throughout the project lifecycle. Pro Document Stack Enterprise Applications Assessments of configuration and application controls, integrity of reporting, security models, sensitive access and segregation of duties, and fit-for-purpose. We use leading commercial, as well as proprietary technology solutions. Pro Legal Briefcase Technology Resilience Assess operational resilience in the context of your use of technology and data, including disaster recovery and crisis response plans, broader business resumption planning, technology infrastructure and architecture assessments, and assessments of overall technology strategy, structure and delivery capabilities. Embrace an integrated and collaborative approach with IT management Our approach We are experts in the identification and assessment of technology risks and controls. Our technology audit framework embraces an integrated and collaborative approach with IT management that reflects the next generation of internal auditing. We evaluate the governance and controls supporting an organisation’s priorities, infrastructure, and delivery approach. Embrace an integrated and collaborative approach with IT management Leadership Justin Yau Justin is a director with over 14 years’ experience assisting clients to improve performance, operational efficiency, effectiveness, quality, and control. He provides technology consulting and internal audit services to leading companies in a variety of industries.  ... Learn More Key partners Featured insights RESEARCH GUIDE FAQ Guide on the Use of AI for Financial Crime Compliance Ask financial crime professionals what the most challenging part of their job is, and most will likely say it is the timely identification of suspicious activity. As much as companies have worked to improve their detection capabilities given their... INSIGHTS PAPER Technology-modernisation projects must define and deliver tangible value to justify investment Unleash growth with technology modernisation. Drive value, lower costs, increase flexibility and meet regulatory requirements effectively. NEWSLETTER A Director’s Road Map for Effective AI Implementation Almost every organisation around the world is trying to figure out what artificial intelligence (AI) offers and how to deploy it to move the business forward. A road map can help directors engage more effectively in these strategic conversations.... INSIGHTS PAPER Harnessing the future: Protiviti’s research on AI adoption Due in large part to the rise of generative artificial intelligence (AI), organisations of all types and sizes are implementing, or considering adopting, AI for various business functions and activities — from accounting and finance to cybersecurity,... BLOGS New Technology Audit Risks Research: Cybersecurity and AI Represent Key Concerns Technology audit functions are navigating a dynamic business landscape that is being shaped continually by exponential growth in technologies like generative AI and the concurrent emergence of new security, privacy and data-related challenges. WHITEPAPER EMPOWERING THE PROGRESS OF SOX INNOVATION WITH ANALYTICS AND AUTOMATION Key takeaways and findings from a SOX Compliance Poll of Audit and Finance Executives and Professionals... WHITEPAPER Enabling Enterprise AI Adoption Through Next-Generation Governance Artificial intelligence (AI) has become increasingly important in the enterprise, thanks in part to the rise of generative AI (GenAI). While not a new technology or concept, AI (including machine learning) holds tremendous promise to transform... FLASH REPORT EU Lawmakers Reach Agreement on AI Act, Creating Regulatory Framework Addressing Risks of AI On December 8th, after two and a half years of negotiation, the Council of the EU and the EU Parliament finally reached a provisional agreement on the EU AI Act, which was first proposed by the European Commission in 2021. The agreement creates... Button Button
