Our Risk Management and Compliance practice is dedicated to serving customers with Enterprise Consulting and Auditing services in the areas of Governance Risk and Compliance (GRC), Business Process Management (BPM) and Information Systems and Security Controls (ISSC). Our risk spectrum consists of – Operational Risks, Compliance Risks for selected Compliance requirements and IT Risks for Manufacturing and Diversified Financial Services vertical.

Under each of the offerings, we focus on following aspects:

• GRC – In area of Financial Reporting and IT, we focus on:
• Compliance – Legal wrt. SOX, JSOX, SAS70, FSA regulations
• Compliance - Standards, Framework and Best Practices like, ISO 27001, COBIT, ISO 4360, ITIL, ERM
• Logical Access Controls including Segregation of Duties and SAP GRC

• BPM - For Business Process and IT Processes, we assist in:
• Business and IT Process Documentation and review
• BPM Consulting including process improvement and automation
• Business Analytics

• ISSC Controls- We assist the organizations in enablement and audits of:
• IT Security Policies, Procedures and Controls
• ERP Health Checks
• Business Continuity Management

Team Profile

• Qualified Chartered Accountants, CISAs, CIAs, Cost Accountants
• BS7799/ISO27001 Lead Auditors, CSQA, CAIIB
• Diversified Industry Experience

Team Skill Set

• Expertise in Business and IT Processes and Controls
• Compliance and Audit Expertise
• Risk Management and IT Security Expertise
• Expertise in SOP Designing and Documentation
• ERP Consulting

For details on each of the services, please visit http://www.kpitcumminsgbs.com