IT Risk Management

As organizations strive to leverage technology to streamline their business, manual processes and internal controls continue to give way to automated solutions. Now, more than ever, IT General Controls are the foundation of a good internal control and financial reporting environment.

The latest buzz in IT is the “cloud”, “mobile” and “virtualization” and it is introducing new opportunities and risks to businesses. The first line of defence in managing these risks is knowledge. We work closely with our clients as guides to their team and businesses to provide that knowledge. We believe navigating the complex world of IT need not be onerous. And we believe great advisors make their clients experts, too.

On either a co-sourced or fully outsourced basis, Decision Point provides the following services:

  • General Controls reviews (based on COBIT 5*)
  • Pre and Post System Implementation reviews
  • IT security health checks
  • Application segregation of duties reviews

Decision Point performs its assignments with an efficient and pragmatic approach and works with management to determine the practical IT controls required to meet your control and /or regulatory requirements.

*COBIT – Control Objectives for Information and Related Technology is an IT governance control framework and supporting toolset that allows businesses to bridge the gap between control requirements, technical issues and business risks. COBIT emphasizes regulatory compliance, helps organizations to increase the value attained from IT and enables the aligning of IT strategy with organizational goals.

“Decision Point always gives us practical advice that helps us focus on what is really important for a company of our size and complexity. The Decision Point Team not only understands our industry, they understand our company and our needs, and are always attentive and responsive.”

- Malcolm Davidson, CFO, Avino Silver and Gold Mines Ltd. February 13, 2017