The Risk, Governance and Compliance Services Group focuses on advising management teams in their efforts to methodologically assess, address and mitigate enterprise risks, and aligning the related governance and regulatory compliance initiatives. The Group provides the following services:
- Enterprise Risk Management (ERM) support services
- Business risk assessment
- IT risk assessment
- Business Continuity Planning (BCP)
- Business Impact Analysis (BIA)
- Sarbanes-Oxley (SOX) Section 404 and IT consulting
- SSAE 18 readiness review and audits (Type I and II)
- Information systems general control review
- Quality Assurance Review (QAR)
- Information systems security and controls review
- Web site compliance assessment
Among the professional certifications collectively possessed by the members of this group are the following: CISA, CRISC, CGEIT, ITIL fv3, CHP, CHSS, AML/CA and others.