Avoid threats, liability, and risks—secure your information.
Every day, businesses rely more on technology to perform regular business operations. Are your IT controls meeting your expectations or the requirements of regulatory authorities?
Regulations continue to proliferate around ensuring the security, confidentiality, privacy, and availability of electronic information. Your organization has controls in place for the protection of data. Dean Dorton’s team of professionals can evaluate whether these controls are designed effectively, operating effectively, and/or meeting compliance requirements. Our IT experts evaluate information system control environments, identify the risks, provide a basis for reliance on the system, and deliver cost-effective control recommendations.
Dean Dorton provides IT audit and compliance services for a variety of clients. We specialize in providing unique service offerings that are customized to meet the specialized needs of each client.
Ask yourself these questions
If you can answer “yes” to any of the following, it’s worth your time to chat with us and see how we can help.
Are you having difficulty finding internal IT audit talent?
Are you struggling to stay educated on various IT compliance requirements?
Are there key IT controls that should be tested regularly, but aren’t?
Are you relying on an external audit firm to perform testing of IT controls?
Have you identified areas of concern regarding your IT controls?
Have there been, or will there be, significant changes to systems and/or processes?
Outsourcing vs. co-sourcing: Which is right for you?
Whether you are looking to accelerate the establishment of an internal IT audit function or realize cost savings by moving to an outsourced model, Dean Dorton can provide your organization with a complete outsourced solution to see rapid results. Many organizations large enough to have an internal audit department are often not large enough to employ full-time IT audit resources—we can fill your need for internal IT audit staff. The breadth and depth of our skilled internal IT audit professionals makes your business more efficient, ensures objectivity, and allows you to focus on your core functions.
IT Audit Services
Outsourced/Co-Sourced Internal IT Audit Solutions
Whether you are looking to accelerate the establishment of an internal IT audit function or realize cost savings by moving to an outsourced model, Dean Dorton can provide your organization with a complete outsourced solution to see rapid results.
Organizations can receive significant value from having a SOC examination performed including reducing redundant audits and differentiation from peers. SOC reporting performed by Dean Dorton ensures all user organizations and their auditors have access to the same information.
Our technology consultants work closely with our audit teams to provide IT general controls testing and services on our audit engagements. We have worked to develop an IT general control framework that can be used to perform a general IT assessment for any organization.
IT Risk Assessments
Dean Dorton knows the importance of properly identifying and mitigating your significant risks. We have the expertise to help you determine the appropriate response to various risks including those related to fraud, cybersecurity, and financial reporting. Many IT regulatory requirements such as GLBA and HIPAA require IT risk assessments.
IT Regulatory Compliance Consulting and Testing
The IT compliance landscape changes rapidly. Dean Dorton can help your organization with your compliance requirements, whether to assess your organization’s readiness or perform procedures to verify compliance status. Examples of regulations our experienced professionals are familiar with include CMMC, DFARS, HIPAA, GLBA GDPR, PCI, SOX, and state regulations.
CIS, COBIT, ISO 27000 series, NIST 800-53, NIST 800-171, NIST CSF, and SCF are just a handful of common cybersecurity frameworks (CSF). Adopting a CSF standardizes processes, priorities, and IT strategy. Dean Dorton can assist in the evaluation process to determine what CSF is appropriate for you organization.
Having the appropriate IT policies and procedures in place not only protects your organization, employees, systems, and information; but they are also a common requirement for IT regulations. Dean Dorton has experienced professionals to assist your organization in this area.
Cyber Liability Insurance Policy and Review
There are two important questions related to cyber liability insurance. The first is whether coverage is sufficient. The second is whether the policy has compliance requirements that must be met prior to paying a claim. Dean Dorton can evaluate whether your cyber liability insurance policy is meeting your organization’s expectations.
IT Audit Timeline
Determine approach and scope
We will conduct interviews with management and the Audit Committee to assess the scope of the internal audit plan and how our testing should be performed to best benefit your organization. Our previous internal audit experiences will help drive the questions and provide focus for the internal audit plan.
Develop work programs
We will develop work programs. The work programs will be consistent with your needs or any regulatory compliance and will also include key dates and reporting requirements. The work programs will list out the objectives and steps to be performed.
We form a best-in-class team to meet the audit needs and work with you to create a schedule that fits your desired timeline. We work very hard to maintain continuity of the engagement team to enhance efficiencies of the work. We use a collaborative, online project management tool to actively manage, share status updates, and communicate throughout the project.
Reporting to audit committee and management
At the completion of our testing we provide a draft report to management for its review. The report includes the objectives, findings and recommendations of the project. If appropriate, management will have a chance to respond to any recommendations prior to the report’s submission to the Audit Committee.
IT audit and risk assessment benefits
Decrease significant risks to your organization
Ability to focus on core business objectives
Meet compliance standards
Ensure proper controls throughout your entire enterprise
Proactive insight—prevent future risks and compliance issues
Send us your name, email, and phone, and a Dean Dorton representative will contact you.