Menu Close

Case Study

Information Security Audit Review for African Bank

The client

The UK-based subsidiary of a noted African bank providing a range of domestic and international banking and financial services to individual and corporate clients

The work

We performed an audit review to provide risk assessment and controls assurance across IT network and perimeter security, IT General Controls and UK Data Protection Act compliance.

How we helped

Working with the bank’s operational teams, the COO and the CTO we mapped out key mitigating controls, assessing design adequacy and operating effectiveness across all material areas of information security risk. Understanding the controls and their operation in their day to day context meant that we were able to build remedial action plans which took account of the client’s current process and control maturity levels. Therefore, the plans were structured to permit control introduction and embedding in a sustainable and efficient manner with minimal disruption to the business.

Value added

By preparing an objective report on the bank’s technology control environment, which identified weaknesses, risks and detailed recommendations, the client was able to develop a risk-based remediation plan to bring the management of information security risks back within their risk appetite efficiently and sustainably.

Customer reviews

What our clients say

Get in touch

If you would like to talk about your risk management requirements, submit your details and one of our consultants will be in touch.