PricewaterhouseCoopers' Global Risk Management Solutions [GRMS] practice is a key component of our global firm. As such, GRMS is a single global practice and business unit of PricewaterhouseCoopers. Our professionals use common technologies, methodologies, and learning and education in order to work dynamically as a single global team.
We take pride in understanding our client's business issues and bringing the right people and skills necessary to solve the most complex business issues. Our professionals are specialized by both area of risk expertise and industry, ensuring our risk management solutions reflect the culture, countries and regions where our clients do business.
As the world's largest risk management consultancy, we are uniquely capable of serving the needs of geographically dispersed clients. With over 5,000 GRMS professionals located in every significant business center of the world, we have the ability to scale our solutions to the most complex client needs. Our local firm is staffed with over twenty professionals, with information technology, accounting and business process backgrounds.
GRMS professionals specialize in a full spectrum of risk management and performance improvement capabilities. Our primary business is helping clients deliver enhanced and sustainable corporate value through the improvement of performance and the management of risk across all critical business processes, systems and people.
The primary services provided by our GRMS professionals are:
(i) MANAGEMENT ASSURANCE SERVICES
Systems and Technology Audit Services
GRMS provides systems and technology audit and control services. PricewaterhouseCoopers professionals can help you and/or your internal audit organization assess IT risks, design a program to assess the effectiveness of controls, and support you with full co-sourcing services. Systems and Technology Assurance Solutions address risks in the key areas of:
- Infrastructure - identifying and providing assurance that the business and technical risks associated with the technical infrastructure supporting complex environments in use today have been mitigated. This includes operating systems (Windows NT, Windows 2000, Unix and Mainframes), network resilience and data center operations.
- Financial Business Process Applications – identifying and providing assurance that business risks at a process level are addressed and supporting management with the design and implementation of control solutions to mitigate those risks.
- Application Security Controls - assessing, designing and implementing user authorizations, which provide appropriate access to business and technical user information with adequate segregation of functions.
- ERP and Supply Chain Security and Controls - assessing, designing, implementing and assuring a secure technical platform and architecture to support the development and operation of business systems. We have a range of services in this area which address issues related to controls design within significant implementation projects, including SAP, Oracle, PeopleSoft, JDE, Commerce One, Ariba and i2 implementations.
Data Transformation Services
One of the key reasons for a system implementation failure is problems with the timely transfer of data from the legacy systems. We recognize that legacy data is valuable business data, and our specialists focus on:
- Ensuring that the value of legacy data is maintained or improved during the data migration process
- Ensuring that the transfer of data does not impact upon the critical path of a project
Our experienced data transformation specialists, utilizing a proven methodology, can help you ensure the data conversion process is a success, while you remain in control of implementation.
Our specialists focus on issues and risk management concerns such as:
- The reliability of interfaces and conversion procedures
- Resource requirements
- Business deadlines
- Overall go-live readiness of your business data
Security & Technology Services
- Threat and Vulnerability Assessments - The vulnerability of systems to attack and penetration by hostile hackers, crackers or viruses is a top concern of leading businesses. By combining state-of-the-art analysis software, sophisticated techniques, industry knowledge and a proven methodology which helps to ensure that client operations are not interrupted, our security specialists will assess your susceptibility to a variety of attacks including: parameter tampering; hidden field manipulation; cross site scripting; forceful browsing; and a host of other attacks commonly used to deface, destroy or compromise a web application.
(ii) OPERATIONAL EFFECTIVENESS
Business Continuity Planning
Recent events highlight the importance of effective contingency planning to ensure business continuity in the event of disaster. We can assess your current business continuity strategies and plans, identify areas of exposure and opportunity, and assist you in designing a solid business continuity plan. Business continuity planning services incorporate all aspects of continuity planning including systems, organizational and physical facility continuity.
