What we do
ICT & Security Risk Governance
Advisory support on ICT risk governance, cyber risk oversight, and operational resilience, including alignment with DORA and EBA ICT risk management guidelines.
Operational Risk Management
Development of operational risk frameworks, including Risk and Control Self-Assessments (RCSAs), incident management processes, key risk indicators (KRIs), and operational resilience structures.
Enterprise Risk Management
Design and implementation of enterprise risk management frameworks, including risk registers, risk assessment methodologies, board reporting structures, and risk appetite frameworks.
Internal Audit Support
Risk-based internal audit planning, internal control reviews, governance audits, and support for audit committee reporting.
Regulatory Compliance & Governance
Governance framework reviews, regulatory gap assessments, policy development, and internal control framework design to support regulatory compliance.
Outsourcing & Third-Party Risk Management
Development of outsourcing frameworks, vendor risk assessments, monitoring structures, and compliance with regulatory outsourcing guidelines.
