Avoid threats, liability, and risks—secure your information.
Every day, businesses rely more on technology to perform regular business operations. Are your IT controls meeting your expectations or the requirements of regulatory authorities?
Regulations continue to proliferate around ensuring the security, confidentiality, privacy, and availability of electronic information. Your organization either has controls in place for the protection of data or needs to implement controls. Dean Dorton’s team of professionals can evaluate whether controls are designed effectively, operating effectively, and/or meeting compliance requirements. Our IT experts evaluate information system control environments, identify the risks, provide a basis for reliance on the system, and deliver cost-effective recommendations.
Dean Dorton provides IT audit and compliance services for a variety of industries. We specialize in providing unique service offerings that are customized to meet the specialized needs of each organization.
Ask yourself these questions
If you can answer “yes” to any of the following, it’s worth your time to chat with us and see how we can help.
Are you having difficulty finding internal IT audit talent?
Are you struggling to stay educated on various IT compliance requirements?
Are there key IT controls that should be tested regularly, but aren’t?
Are you relying on an external audit firm to perform testing of IT controls?
Have you identified areas of concern regarding your IT controls?
Have there been, or will there be, significant changes to systems and/or processes?
Outsourcing vs. co-sourcing: Which is right for you?
Whether you are looking to accelerate the establishment of an internal IT audit function or realize cost savings by moving to an outsourced model, Dean Dorton can provide your organization with a complete outsourced solution to see rapid results. It is challenging to recruit and maintain an internal staff of IT auditors. Let us fill your need for internal IT audit staff. The breadth and depth of our skilled internal IT audit professionals makes your business more efficient, ensures objectivity, and allows you to focus on your core functions.
IT Audit Services
Outsourced/Co-Sourced Internal IT Audit Solutions
Whether you are looking to accelerate the establishment of an internal IT audit function or realize cost savings by moving to an outsourced model, Dean Dorton can provide your organization with a complete outsourced solution to see rapid results.
Organizations can receive significant value from having a SOC examination performed including reducing redundant audits and differentiation from peers. SOC reporting performed by Dean Dorton ensures all user organizations and their auditors have access to the same information.
The IT compliance landscape changes rapidly. Dean Dorton can help your organization with your compliance requirements, whether to assess your organization’s readiness or perform procedures to verify compliance status. Examples of regulations our experienced professionals are familiar with include CMMC, DFARS, HIPAA, GLBA GDPR, PCI, SOX, ISO 27001, and state regulations.
Our certified professional IT audit and cybersecurity team can help your business organization keep its cybersecurity measures program compliant with the Department of Defense (DoD). Contractors working with FCI or CUI will be required to be certified compliant based on one or more of the three CMMC maturity levels.
CIS, COBIT, ISO 27001, NIST 800-53, NIST 800-171, NIST CSF, and SCF are just a handful of common cybersecurity frameworks (CSF). Dean Dorton can assist in evaluating which CSF is appropriate for your organization and how well-implemented your CSF is.
IT General Controls Testing
Our technology consultants work closely with our audit teams to provide IT general controls testing and services on our audit engagements. We have worked to develop an IT general control framework that can be used to perform a general IT assessment for any organization.
IT Risk Assessments
Dean Dorton knows the importance of properly identifying and mitigating your significant risks. We have the expertise to help you determine the appropriate response to various risks including those related to fraud, cybersecurity, and financial reporting. Many IT regulatory requirements such as GLBA and HIPAA require IT risk assessments.
IT Policies and Procedures Development and Review
Having the appropriate IT policies and procedures in place not only protects your organization, employees, systems, and information; but they are also a common requirement for IT regulations. Dean Dorton can ensure your IT policies are addressing your compliance and CSF needs.
Cyber Liability Insurance Policy and Review
There are two important questions related to cyber liability insurance. The first is whether coverage is sufficient. The second is whether the policy has compliance requirements that must be met prior to paying a claim. Dean Dorton can evaluate whether your cyber liability insurance policy is meeting your organization’s expectations.
IT Audit Methodology
Determine approach and scope
We will perform a risk assessment by conducting interviews with management and the Audit Committee to assess the scope of the internal audit plan and how our testing should be performed to best benefit your organization. Our previous internal audit experiences will help drive the questions and provide focus for the internal audit plan.
Develop work programs
We will develop work programs. The work programs will be consistent with your needs or any regulatory compliance and will also include key dates and reporting requirements. The work programs will list out the objectives and steps to be performed.
We form a best-in-class team to meet the audit needs and work with you to create a schedule that fits your desired timeline. We work very hard to maintain continuity of the engagement team to enhance efficiencies of the work. We use a collaborative, online project management tool to actively manage, share status updates, and communicate throughout the project.
Reporting to audit committee and management
At the completion of our testing we provide a draft report to management for its review. The report includes the objectives, findings and recommendations of the project. If appropriate, management will have a chance to respond to any recommendations prior to the report’s submission to the Audit Committee.
IT audit and risk assessment benefits
Decrease significant risks to your organization
Ability to focus on core business objectives
Meet compliance standards
Ensure proper controls throughout your entire enterprise
Proactive insight—prevent future risks and compliance issues
Send us your name, email, and phone, and a Dean Dorton representative will contact you.
The matters discussed on this website provide general information only. The information is neither tax nor legal advice. You should consult with a qualified professional advisor about your specific situation before undertaking any action.