Logo for Todd Herman Associates business technology consultants in Greensboro, NC

Browse Our Services ::

::
Business Systems
::
Business Process Improvement
::
Data Analysis & Business Intelligence

Sign Up for Our
e-Update Newsletter

What you get:

::
Practical tips.
::
Concise case studies.
::
No-nonsense thinking.
::
Lessons learned.
::
Subscribe here.

GETINVOLVED!

It's easier than you may think to end hunger and homelessness in our communities. We invite you to GETINVOLVED! and spread the word.

::
Find out more here.

:: About Us \  :: Resource Center \  :: Site Map \  :: Contact Us \  Todd Herman Associates Home Page

Business Systems › Information Technology Review

The overall objective of an Information Technology (IT) Review is to evaluate the controls over information technology that are in place, report on any weaknesses, and make recommendations for improvement.

Key Features
::

 

  • A review of the existence, effectiveness, and adherence of IT controls, often using the CoBIT framework.
  • Assessment of the security of corporate data and assets through internal practices and independent external threat assessment and testing.
  • Financial evaluation of the utilization and return on IT investments.
Deliverables & Approach
::

 

  • Provide report of current state and identified issues.
  • Prioritize key areas for improvement.
  • Recommend steps to address issues and resolve high risk issues quickly.
  • Meet with stakeholders and agree to specific corrective steps.

Our approach to Information Technology Review

Plan

  • Determine scope, approach, and agreed-upon procedures with client.
  • Select appropriate framework for assessing the key Information Technology (IT) processes.
  • Obtain overview of the IT resources — including people, facilities, technology, application systems, and data — relevant to the project.

Identify

  • Interview appropriate management to assess both importance and risks of key IT processes and related control objectives.
  • Document findings in an Initial Risk Assessment matrix.
  • Identify high risk areas, and determine key controls to mitigate risks.
  • Discuss initial findings with management.

Test

  • Test the identified key controls — by reviewing logs, observing procedures, and selecting items for substantive testing — to ensure they are working as intended and able to detect material issues.
  • Assess whether responsibility and accountability are clear and effective.
  • Determine if compensating controls exist and are operating effectively.

Report

  • Summarize findings and recommendations from the review.
  • Develop final assessment report.
  • Present report to management and answer questions.

Implement

  • Elaborate, as needed, on the report recommendations to make them clear and practical to implement.
  • Review expanded recommendations with personnel responsible for implementation.
  • Offer on-site assistance and project management services.

Review

  • Conduct post-implementation review with users.
  • Resolve any remaining issues.
How We Work With You
::

 

IT Review projects are performed by a consultant — or a consultant team — who understands IT controls and practices in organizations. We have two levels of reviews, each of which can be tailored to suit the client's needs.

Our goal is to become a valued member of your team — working with your people and your business to help you accomplish your goal of an efficient and effective IT Review.

Results & Benefits
::

 

Each client receives an independent assessment of their IT department — personnel, policies, and practices — which can include:

  • Recommendations for improvement.
  • Identification of training needs.
  • Analysis of IT spending effectiveness.
  • Evaluation of the security of corporate assets and data.
For Further Information
::

 

To discuss whether this service could benefit your business, please call us at 336.297.4200 or send us an e-mail to schedule a no-obligation consultation.

Call Us for a No-Obligation Consultation

Think your business could be running better? You're probably right — we'll help you figure out where to begin.

Improving processes and using technology to help people deliver more results. That's what we do.

Call 336.297.4200 or click here to contact us online.

Business Systems Technology Consulting Services

Examples of Our Business Systems Projects

  • They Wanted Blackberrys: Overhauling Job Quoting with Process Standardization and New Technology: A Case Study
    What happens when the right technology is implemented?
    Read more »
  • Lotus Notes Enhancements
    Revised a Lotus Notes-based contract management system for the in-house legal department of a pharmaceutical firm, enabling executed contracts to be better stored and archived.
  • Quoting System Rollout
    Trained employees in multiple locations on this Lotus Notes-based collaborative quoting system, ensuring the inside and outside sales force quickly implement and use process and technology improvements.
  • ERP System Rollout
    Managed the cutover of this company’s manufacturing facility to a new ERP system, minimizing operational disruptions while accommodating the annual audit of physical inventory.
  • Managing Rollout and Post-Implementation
    Managed the rollout and post-implementation phases of this system customization project, permitting critical fabrication operations to continue while identifying, triaging, and resolving issues.
  • Assessing System Needs
    Assessed the business processes and information needs of this custom manufacturer to identify suitable business system packages, helping management make an informed decision on their system investment.

Our Services | About Us | Business Resource Center | Site Map | GETINVOLVED! | Privacy Policy | Contact Us

Copyright Todd Herman & Associates, PA