Providing your internal audit with distinctive, independent and objective support.
IT has been, and will increasingly be, a key factor for success and operational efficiency in all industries. Innovations such as the cloud and virtualization, and new threats around data security, have reinforced the importance and increased the risks associated with the use of technology for our clients. Therefore, there is a constant challenge for internal auditing:
We believe the solution lies in total or partial outsourcing with a recognized team of experts. Grant Thornton's team of IT assurance specialists can help you.
Our skills can add value at every level, from IT strategy to detailed application review. We have the depth and breadth of skills to add significant additional capabilities to your team, enhancing your role in the business and the value your internal audit function can deliver.
The role of internal audit is to provide assurance on the effectiveness of internal controls relied upon by management. It helps an organization achieve its objectives by systematically assessing and improving the effectiveness of control and risk management processes.
All organizations are increasingly reliant on their IT infrastructure and underlying systems, so a strong IT audit capability is a critical component of any effective internal audit function. By selecting Grant Thornton for your outsourcing/co-sourcing needs, you can be assured that we will provide the right expertise, at the right time, to add real value to your internal audit function. We will ensure that IT risks are better identified, assessed and managed as appropriate for the business.
We can work with your internal audit team to provide you with specialized IT auditors, through an outsourcing or co-sourcing arrangement. Typically, we would work with you to develop your IT audit plan, collaborating with both the IT function and management, to improve your company's understanding of IT risks and the impact on your business. We will work with you to establish audit and assurance plans. This will raise robust challenges on the adequacy of key controls and ensuring they are effective.
As our service is provided by a highly qualified team of experts, we are able to provide a wide range of IT audit solutions. These include specialized IT audit reviews focused on a particular topic or project, reporting directly to Technology and other senior management. Alternatively, our specialists can conduct reviews and reports through your own internal audit management structure.
Whatever the service models, we work in true partnership with you and aim to achieve significant levels of knowledge transfer between our experts and your team.
We provide full or partial outsourcing services, covering all aspects of normal internal functions, but with the additional benefits that come from an outsourced service, including:
We are used to working together with existing internal groups, such as the audit committee and other risk management functions, to effectively meet your assurance needs.
Together with business auditors, we review existing processes to improve them or advise on situations such as risk management strategies planning or developing an enterprise-wide risk management framework. A growing trend is to perform control reviews often before an internal or external audit, regulatory review or other. We also offer specialist assignments including:
In providing our IT internal audit services, we use a broad range of skills in core audit areas including:
Information technology general control and assurance (ITGC).
Comprehensive business and application reviews.
Specific controls on applications and information integrity.
Risks associated with emerging technologies.
IT Governance.
Cybersecurity / Information security.