Risk Assessment Services

Prior to simply performing an audit, it is critical to first identify and categorize risk. A properly performed risk assessment is a critical component in understanding the complexities and requirements of the risk assessment process, prior to identifying and testing controls to mitigate the related risks. Risk assessments should be comprised of an information gathering process to identify threats and vulnerabilities the organization is facing, determining the probability and impact of those threats, identifying existing mitigating controls, designing audit procedures test the effectiveness of those mitigating controls.

Throughout this process, a combination of collaborative discussion and reviews will occur with the business functions and supporting services being audited. What makes Schneider Downs stand out among our competitors is our ability to consider and understand the multiple layers of technology that help support business functions, while developing a personal focus to your business and the people supporting it. We believe in collaborating with multiple layers of your organization, staff, management, and C-level executives to ensure that risks are appropriately identified.

Schneider Downs can assist your organization in identifying IT risks by performing a thorough and detailed risk assessment that will ensure that your organization has implemented the appropriate safeguards to protect the most valuable IT assets within your organization.

Detailed Approach to Risk Assessment

We begin our assessment by working closely with you to understand your business functions and take an inventory of the technologies used to support those functions. We will work with and interview key individuals within the business and information technology services to understand information policies, procedures, and practices through the following:

  1. Hold information gathering sessions;
  2. Identify threats and vulnerabilities;
  3. Determine the probability and likelihood of threats occurring;
  4. Evaluate the effectiveness of controls;
  5. Determine overall residual risk

Our ultimate goal is to assess your organization’s risk appetite in relation to your business functions and supporting technologies through identifying gaps and providing detailed recommendations to effectively close those gaps to mitigate potential risks to the business.

case studies

 
big problem:
A not-for-profit client out of 401(k) compliance.
big thinking:
Allowing more contributions by highly paid employees.
 
big problem:
Hackers attempting a six-figure wire transfer.
big thinking:
Rapid action spearheaded active containment and response.

our thoughts on

Artificial Intelligence in Higher Education

Before you finish typing a key word in the search bar, it may appear as if your thoughts have been predicted. Artificial intelligence (AI) and machine

read more >

Why Higher Education Institutions Must Comply with GDPR

The EU General Data Protection Regulation (GDPR) has been in effect for 10 months. One sector that has been affected by the newly enforced regulation,

read more >

Minimizing Higher Ed Risks - Utilizing Internal Audit and Data Analytics

We’ve all seen various colleges and universities in the news lately, and the news was not always positive. Higher education institutions face a varied

read more >

Data Analytics | Pittsburgh Technology Services

In the age of technology, there is no limit to the applications of data and data analytics. This spans company type, region and industry. This includes,

read more >

Enterprise Risk Management in Higher Education, and How Internal Audit Can Help

Recent history indicates that the pace of change in Higher Education is unprecedented; however, institutions are only seeing a modest increase in the use

read more >

Have a question? Ask us!

We’d love to hear from you. Drop us a note, and we’ll respond to you as quickly as possible.

Ask us

contact us

Map of Pittsburgh Office
Pittsburgh

One PPG Place, Suite 1700
Pittsburgh, PA 15222

contactsd@schneiderdowns.com
p:412.261.3644     f:412.261.4876

Map of Columbus Office
Columbus

65 East State Street, Suite 2000
Columbus, OH 43215

contactsd@schneiderdowns.com
p:614.621.4060     f:614.621.4062