Skip to content

Compliance

Compliance to legislation and regulations such as Sarbanes-Oxley, SAS70 and Basel III is imperative these days. But also compliance to frameworks such as Cobit® and CMM can be an objective for any company to demonstrate the control over its processes. DelITad’s expertise in all of these domains will turn these sometimes vague and complex descriptions into comprehensible audit reports including feasible recommendations. And this is not the end of our services. A big differentiator to other consultancy companies is the fact that, when required and desired, the implementation of these recommendations can be made part of the job.

Example of a SOX compliance project

One of our clients is part of a group which is listed on the NY Stock Exchange. Therefore, as a Belgium subsidiary they have to comply to the Sarbanes-Oxley rules as from this year. For the documentation of the IT processes and their controls, they already had a number of documents. However, these are sometimes incomplete and are not always directly linkable to an IT process.  The challenge within this project was that the IT department only consisted of 2 persons and that segregation of duties was an issue.

delITad assisted them in the gathering of the existing documentation of the current IT Processes. The goal was to identify any gaps between what exists and what SOX requires.

More in detail, delITad documented the following processes: Security Management: People In – People Out – People Change procedure, Physical Security, Manage Data and Manage the configuration. The solution for the SOD problem was the implementation of  temporary access and exception reporting on certain activities.

 

For the project, one of our consultants was integrated within the IT department. Based on reviews of documentation and interviews with key personnel, he created a first draft of the process and identified the missing key controls. Based on this analysis, he proposed a remediation plan which was implemented jointly with IT personnel.  This project resulted in the compliant declaration of the external auditors.

For a full overview of our services, feel free to download the Delitad Services Portfolio. Should you have specific questions or are you interested in a more in-depth presentation of our service, do not hesitate to contact us at info@delitad.com or +32 3 451 36 60

Delivering IT Advisory

deITad is the group of consultants, which focuses on Governance, Risk and Compliance.
DelITad strives to be a professional alter- native for the traditional high-end consultancy firms. Our focus is on the pragmatic approach to assess both IT and business processes. Our goal is helping enterprises by providing tailor-made and easy-adoptable advice based on in-depth analyses and audits.

Twitter Feed

  • Opendeurweekend La Lune 2012/02/19
  • recertified for ISO9001! Congrats everybody! Keep up the good work! 2012/01/04
  • is looking for a Process Manager Automotive Industry. Please call me at +32495932985 2011/11/03

Archives