BASG Selected for Risk and Regulatory Compliance Project

July 2024

Business Advisory Solutions Group (BASG) has been selected to assist a growing financial services organization in remediation of multiple SOX/IT Access & Controls Management audit deficiencies.

The highly experienced BASG Team will work with the Chief Risk Officer and the Information Security Officer to review and evaluate the current Access Management program and provide guidance in developing tighter processes, procedures and policies to address a number of key areas including:

  • IT Controls for User Access:
    • Develop a risk-based, enterprise-wide segregation of duties (SOD) process to monitor for potential access conflicts.
  • User Password and Authentication Policy Work:
    • Review and assess the current state of the User Access Review (UAR) processes including Baseline User Access Reviews. Termination Access Reviews and Annual User Access Reviews.
  • Baseline User Access Reviews and Annual Application Access Review:
    • Make recommendations regarding improvements and work with Management to implement the accepted plan.
  • Privileged User Access Review and Recommendation:
    • Develop a privileged access management policy and review currently designated privileged access individuals.

BASG’s Managing Partner, Don Clayton, added: “We are happy to assist this valued Client in remediating the identified deficiencies.  And we are committed to working with our Client to help it install, integrate and instill a robust Access Management culture within its organization, ensuring that the needed processes and procedures are firmly in place to guide this growing organization far into the future.”

 

Contact us at:  [email protected]

About Business Advisory Solutions Group, LLC (BASG)

Business Advisory Solutions Group supports business profitability and growth by standing at the intersection of People, Process and Technology.  BASG has delivered tangible results that improve productivity, mitigate risk, and maximize profits for organizations. Our Clients range from Fortune 500 companies to mid-sized and owner-managed businesses across a broad range of industries and government.