Risk Management

In the field of Risk Management, senior management is looking for assurance over its business processes in order to optimize them and increase performance or to mitigate the operational and financial risks. DelITad provides the necessary skills to provide this assurance, identify risks and controls, and assess the residual risks. Afterwards appropriate recommendations to either mitigate these risks or carry out process optimizations will be formulated and implemented.

In correlation to IT, knowledgeable and certified internal IT auditors are hard to find. DelITad can assist your internal audit department in its day-to-day operations. Besides assistance in the execution of internal audits, DelITad has the skills to execute an internal IT audit where the scope starts with the creation of an audit plan and ends with the presentation to senior management or the Internal Audit Committee of the findings and recommendations.

Example of  Risk Management for Business Continuity Planning

The goal of this project was to identify internal and external threats which might lead to system interruption.  The risk was defined by its impact and the probability.  De deliverables of this project were a list of Single points of failure.

A prioritized list of threats for the specific business processes and a  strategy and action plan for the identified risks. There are 3 main groups for IT related risks: IT Benefit/Value Enablement Risk, IT Program and Project Delivery Risk, and IT Operations and Service Delivery Risk. Every IT department has one of these three as main driver.

From the Risk IT framework and based on the business context we selected only those risks related to the main driver.  For every risk we identified the impact and risk on  a scale of 1-9.  From this risk register an appropriate strategy could be derived based on the matrix aside.