Risk Assessment Services

Prior to simply performing an audit, it is critical to first identify and categorize risk. A properly performed risk assessment is a critical component in understanding the complexities and requirements of the risk assessment process, prior to identifying and testing controls to mitigate the related risks. Risk assessments should be comprised of an information gathering process to identify threats and vulnerabilities the organization is facing, determining the probability and impact of those threats, identifying existing mitigating controls, designing audit procedures test the effectiveness of those mitigating controls.

Throughout this process, a combination of collaborative discussion and reviews will occur with the business functions and supporting services being audited. What makes Schneider Downs stand out among our competitors is our ability to consider and understand the multiple layers of technology that help support business functions, while developing a personal focus to your business and the people supporting it. We believe in collaborating with multiple layers of your organization, staff, management, and C-level executives to ensure that risks are appropriately identified.

Schneider Downs can assist your organization in identifying IT risks by performing a thorough and detailed risk assessment that will ensure that your organization has implemented the appropriate safeguards to protect the most valuable IT assets within your organization.

Detailed Approach to Risk Assessment

We begin our assessment by working closely with you to understand your business functions and take an inventory of the technologies used to support those functions. We will work with and interview key individuals within the business and information technology services to understand information policies, procedures, and practices through the following:

  1. Hold information gathering sessions;
  2. Identify threats and vulnerabilities;
  3. Determine the probability and likelihood of threats occurring;
  4. Evaluate the effectiveness of controls;
  5. Determine overall residual risk

Our ultimate goal is to assess your organization’s risk appetite in relation to your business functions and supporting technologies through identifying gaps and providing detailed recommendations to effectively close those gaps to mitigate potential risks to the business.

case studies

 
big problem:
Ransomware attack halted a global manufacturer's operations.
big thinking:
Recover and secure the system – fast – save $1 million in ransom.
 
big problem:
A not-for-profit client out of 401(k) compliance.
big thinking:
Allowing more contributions by highly paid employees.

our thoughts on

ACFE releases Anti-Fraud Technology Benchmarking Report

With the advancement of technology over the years, the avenues for fraud perpetration, protection and detection have multiplied. In an effort to gain a

read more >

National Flood Insurance Program Extension

As I watched the pounding rain from my window for the third straight day, I could only imagine the damage this unpredictable spring weather was inflicting

read more >

When to Buy New Electronics? Now!

Every day we use products bearing the label “Made in China”, a mark that has become synonymous with the affordable mass production of countless

read more >

Continued Compliance with CAISO SQMD Requirements in Non-Reporting Years

Is your utility company ensuring continued compliance with the CAISO SQMD requirements during non-reporting years? With the California Independent System

read more >

Bill S. 1564 Calls for Delay of CECL Implementation Until a Quantitative Economic Impact Study is Completed

The Financial Accounting Standards Board (FASB) issued a new expected credit loss accounting standard in June 2016. This new standard introduces the current

read more >

Have a question? Ask us!

We’d love to hear from you. Drop us a note, and we’ll respond to you as quickly as possible.

Ask us

contact us

Map of Pittsburgh Office
Pittsburgh

One PPG Place, Suite 1700
Pittsburgh, PA 15222

contactsd@schneiderdowns.com
p:412.261.3644     f:412.261.4876

Map of Columbus Office
Columbus

65 East State Street, Suite 2000
Columbus, OH 43215

contactsd@schneiderdowns.com
p:614.621.4060     f:614.621.4062