Governance risk & Compliance

Startseite Governance risk & Compliance
Text-size A A

MARKET DIAGNOSIS

Financial services firms have been facing an unprecedented level of cyberattacks in recent months. In many cases, those increasingly sophisticated attacks are proving very successful. More than £503m had been stolen from UK financial institutions through authorised and unauthorised fraud in the first 6 months of 2018 alone.

  • A cybersecurity strategy needs the full involvement and support from the C-suite and board.
  • Senior leaders don’t always fully understand some of the risks the firm has taken on, whether explicit or implicit—but they should.
ALTRAN_EMPLOYEE-YG

$18,3m

Is the average cost to a business, due to cyber crime, with the financial services industry seeing the highest cost.

ALTRAN_EMPLOYEE-GR

71%

Of cyber attacks start with spear phishing emails.

OUR VALUE PROPOSITION

We help organisations mature their GRC strategies whilst adopting an integrated approach with the SYNERGi GRC platform.

The WCC for Cyber Security spans across geos, offering organisations an opportunity to enhance their cyber security strategy and approach to compliance with the following propositions:

  • GRC change programs – using highly experienced consultants to carry out assessments to help organisations build and implement integrated cyber risk management frameworks
  • SYNERGi GRC platform – an all-in-one platform with a 360 degree approach to bringing all governance, risk and compliance frameworks into one place to help organisations overcome the increasing cyber security challenges and threats
  • Security Testing – applying the mentality of a hacker to an organisation to understand the vulnerabilities and how to fix them

OUR OFFERING

We support organisations at every step of their cyber maturity journey.

  • ASSESSMENT AND ANALYSIS

    ASSESSMENT AND ANALYSIS

    Working with our clients to understand their objectives, areas of vulnerability and industry. We work with organisations to create bespoke consultancy services, rather than one-size-fits-all approach.

  • SOLUTION AND REMEDIATION

    SOLUTION AND REMEDIATION

    Once the reports and recommendations are finalized, our technical consultants are leveraged to help fix any vulnerabilities, strengthening the client’s cyber position.

  • BUSINESS AS USUAL

    BUSINESS AS USUAL

    To help the client monitor, assess and remediate during and after the consultancy service (BAU), the SYNERGi platform brings together all frameworks and standards to ensure continued and manageable compliance thereafter.

With an integrated approach to manage your end-to-end cyber landscape.

  • GRC STRATEGY DEFINITION

    GRC STRATEGY DEFINITION

    We work with businesses of all sizes to help them build integrated cyber risk management frameworks, develop strategies that allows their business to thrive and implement the process, procedures and systems that enable management to reduce the impact of operational risk and let them focus on what they do best, running their businesses.

  • EXECUTION ACCELERATION

    EXECUTION ACCELERATION

    An integrated, all-in-one platform is the ideal way to manage your GRC lifecycle. Our award-winning technology platform is engineered to help organisations address their ever-changing governance, risk, compliance, privacy and cyber security challenges.

  • SECURITY TESTING

    SECURITY TESTING

    Security testing applies the mentality of a hacker to your organisation across all disciplines – so you know for sure if you have any vulnerabilities, where they lie and how to fix them. Our testing portfolio covers a wide range of applications, including smartphone, client-server, web and web service applications, as well as radio equipment, nodes and identity management.

RECENT PROJECTS

    • 1 4

    • BRITISH MULTINATIONAL FINANCIAL SERVICES COMPANY

      SUPPLIER MANAGEMENT AND PEN TEST PORTAL - SYNERGi

      The insurance division utilises the newly created pen-test portal to manage all their remediation activities for pen testing and the investment arm uses the vendor management module to focus on the management and compliance of their supply chain - which IRM also provides a managed service of carrying out third party due diligence assessments.

    • 2 4

    • AWARD-WINNING INVESTMENT

      CYBER CRISIS MANAGEMENT AND PHYSICAL TESTING

      Delivered full cyber crisis management program including workshops to help business understand the risk and impacts of a cyber attack. Ad-hoc pen tests are also completed, as well as additional red teaming activities.

    • 3 4

    • TRAVELEX – GLOBAL CURRENCY EXCHANGE

      TRAVELEX ACHIEVES PERVASIVE RISK VISIBILITY - SYNERGi

      As an FCA regulated company Travelex wanted to digitise their Anti–Money Laundering (AML), Know Your Customer (KYC) and Sanctions compliance obligations. We helped them to automate their processes, empower their  compliance team to make better decisions faster. The service is delivered across 200 countries and 2000 currency stores.

    • 4 4

    • LEADING RETAIL AND COMMERCIAL BANK IN THE UK

      GDPR TRANSFORMATION PROGRAM

      Delivered entire GDPR transformation program.
      Annual Red Teaming exercise is also conducted along with third party due diligence assessments, ISO27001 consultancy.

      Delivered company wide Cyber Awareness Week, delivering training and content to all staff. Ad-hoc pen tests are also completed.

OUR WHITE PAPERS

The NIS directive: have you got a cyber solution?

This practical guidance paper explores the basics of the NIS Directive and what is required from organisations of national importance.

Download

Strategic Grc: Risk Reduction Programme

Is your business currently finding it difficult to keep abreast of change, technology, and your threat landscape?

Download

FIND OUT MORE