


Audit and analytics
Internal audit framework and maturity
Data analytics capabilities
Certification readiness
Audits of Digital strategy, IT Architecture and Automated process
Independent review and heath check (project, third party, fraud, incident)
Digital enablement and subject matter expert
Business analyst
Enterprise Architecture
Program and project management
IT Officer and Information Security Officer
Risk function and Internal Audit support
IT support for report on controls and statutory audit
Resilience
Executives risk insights
Operational Resilience (BIA/BCP/DRP)
Stress testing, incident response and table-top
Change management and secure development
Cyber capability/maturity model
Core cyber capabilities (IAM, PAM, SIEM, VM,…)
Strategy and governance
Digital strategy, governance and oversight
Emerging Tech insights
Board and senior management reporting
Tech function maturity assessment and cost efficiency
PMO implementation and support
Regulatory and compliance
Ad-hoc regulatory gap analysis and remediation plan
Cloud compliance and risk assessment
IT Regulatory application file
Regulatory intelligence, monitoring and response
Regulatory supervision readiness for significant financial institutions
Risk and control assurance
Ops risk framework and operating model
Ad-hoc risk assessment (project, supplier)
Critical asset identification and control
Emerging tech review
Risk profile and reporting / KPI, KRI and KCI program
Internal control and monitoring
Supplier and third party management
Third party risk framework
Supplier selection, due diligence and monitoring
Contract clause for Cyber and IT (Supplier, vendor, client)
Client due diligence / Database of standard response
Third party incident response
Education, training and talent
Operational risk education for Executives
Regulatory updates and cyber intelligence for Executives
Recruitment of cyber professionals and selection of NEDs for Board
Ops Risk and cyber awareness program