© 2018 by Hansuke Consulting Limited

 

Hansuke Consulting Limited is registered in England and Wales number 10136213 with its registered office at: 71-75 Shelton Street, London WC2H 9JQ. Hansuke Consulting Limited is an accredited and regulated member firm of the Institute of Chartered Accountants in England and Wales (ICAEW).

 

In accordance with the disclosure requirements of the Provision of Services Regulations 2009, our professional indemnity insurer is International General Insurance Co (UK) Limited, of 133 Houndsditch London EC3A 7AH. The territorial coverage is worldwide excluding professional business carried out from an office in the United States of America or Canada and excludes any action for a claim brought in any court in the United States of America or Canada.

Contact our team
+44 (0) 207 816 5488
IT Governance, Risk and Compliance

Technology plays a vital role in delivering business value. It has transformed from a support function to a business enabler that assists organisations to innovate, develop and grow. However, the use of technology has brought with it unprecedented risk which means organisations must take measures to understand their technology landscape to allow management to keep abreast of the risks and at the same time be able to actively monitor and manage these.

 

The following are some of our offerings:

 

IT Governance

 

  • Setting ‘tone at the top’

  • Defining IT strategy

  • Conducting health checks

  • Determining risk appetite and tolerance levels

  • Defining Key Risk and Performance Indicators (KRI/KPI)

  • Implementing management oversight dashboards

  • Implementation of best practice frameworks e.g. CObIT, NIST, ITIL, ISO 27001

  • Digital transformation – strategy development and solution implementation

  • Risk related training development

 

IT Risk Management

  • Conducting risk assessments and application reviews, and issue remediation

  • Implementation, configuration and BAU running of Governance, Risk and Compliance (GRC) tools;

  • Change Management

  • Business process review and re-engineering

 

IT Compliance

  • Compliance to regulations e.g. Sarbanes-Oxley (SOx), Senior Accounting Officer (SAO)

  • Third party assurance e.g. SSAE16

  • Producing and validating IT policies, standards and procedures

  • IT General Computing Controls (GCC) controls testing

  • Audit assurance

  • IT internal audit, co-sourcing and outsourcing

  • Setting up and validating IT disaster recovery plans.

  • Compliance reviews e.g. ISO27001 /22301, PCI-DSS etc.