Services of Integrated Solutions for Technological Risks

View this page in: Español

Analysis of IT risks and governance framework
- Risk analysis, control assessment and definition of IT governance framework, based on recognised international standards and best practice on risk assessment and design of process framework and IT controls.
Global security model
- Global security model in all strategy stages, implementation, management and response, through specific solutions such as the master security plan, security legislation, certifications, asset count and classification, awareness programmes, identity management, security scorecards and centralized security management.
Business process control
- Assessment of operational effectiveness and efficiency of the business process control framework and IT systems. Review of logical access and segregation of duties in the technological platform supporting the process. Definition and improvement of the control framework, based on best practice and control optimisation.
Business continuity plan
- Business continuity plan and information systems contingency plans. Analysis of operations continuity risks and business impacts of operational faults in systems or serious contingencies. Recovery strategy evaluation and development, procedures, test plans and other relevant aspects to ensure the continuity of operations.
Data management
- Data quality analysis and review procedures, validation and recalculation in mass data processing through prototype generation and specific tool use. Risk analysis in data processing, review of spreadsheets and definition of the control environment enabling data quality and integrity to be maintained.
Security audit
- Review of technological environment security (applications, platforms, operating systems communication networks etc). Identification of system vulnerabilities and measures to increase information asset protection.
Legal technological risks
- Application of legal measures for the prevention of legal risks. Corporate digital identity. Electronic signature. Ebusiness. Intellectual Property Protection. Technological Contracts. Project negotiation. Technological arbitration. Domain recovery. E-invoice platform validation.
IT Outsourcing
- Analysis of legal and technological risks deriving from IT outsourcing in different stages of the life cycle. Evaluation of the governance framework established in the management of outsourcing activities. Review of contractual aspects. Service level agreements and supplier control environment.
Data protection
- Adaptation, audit and advice on compliance with current personal data protection, in relation to technical, legal and organisation aspects. Audit under the Security Measure Regulations. Defence in the event of an inspection by the Spanish Data Protection Agency. Scorecard under Data Protection Law.
Failed project prevention and management
- Specialist advice on technological project management. Outsourcing of technical office and adequate management of changes and projects. Design of action protocols. Comprehensive needs analysis. Preparation of contracts. Determining guarantees. Key objective monitoring. Follow-up of schedules and timelines. Dispute management and arbitration.
Forensic analysis and technological disputes
- Preparation of expert reports in accordance with the study of unlawful activities by third parties, users or ex-users of information systems. Investigation of IT crimes, defence in the event of technological disputes and persecution of Internet crimes. Preparation of dismissal and email intervention protocols.

Comperio IFRS - Servicio online de pago sobre normas de contabilidad internacionales

Contact us

Requesting for our professional services?

Of further interest

Informe de Transparencia 2011 de PwC Auditores PwC Spain Annual review 2011 Excellence and relationships for being different