How We Work: Our risk management services combine a due-diligence approach with our expertise in creating risk profiles for companies, systems, and projects. We assess business risks from competitive and financial pressure, and assess implementation, systems, or project risk. The resulting assessment dovetails with the Business Plan and integrates with management directives. This helps to ensure that identification of risk leads logically to its elimination or management.

Policy Methods:

• Creation of IT policy
• Development and customization of IT methods, standards, and practices
• Implementation of reference architectures via methods and standards
• Implementation of portfolio management approaches to IT risk and cost management.
• Assessment of compliance with legal and regulatory policy, including Sarbanes-Oxley, Graham-Leach-Bliley Act, HIPAA, and others.