For Discussion Purposes Only

Advisory Services
EW Consultants
For Discussion Purposes Only
Contents
1
2 3 4 5
Business Risk & Challenges History of Frauds & Recent Surveys
About EW Consultants
Our Risk Advisory Services

Our Dual Delivery Model
6
7
Benefits to your organization Annexure

2
Business Risk & Challenges
Risk & Challenges

Corporations across the world are highly concerned about the security of their business from threats like fraud, intrusion, theft of customer data, etc. In context of the current needs, companies require to tighten their business policies, procedures and systems.
We should have considered SoD while granting access How could someone did fraud even after we closely monitor it Auditor declared controls to be ineffective How do I design controls in my business and IT systems
How IFRS will affect my Financial systems
Does my IT systems has sufficient password and user access security controls Why IT team is spending lot of unproductive time on maintenance
Is my system prone to access intrusions
Our ERP implementation team never gave us the controls
Are we ready for IFRS Convergence
What is the Solution???
History of Frauds & Recent Surveys
History of Financial Frauds
Source: www. wikipedia.org

2010 Faces of Fraud Survey
Source: Information Security Media Group

2010/2011 CSI Computer Crime Survey
2010 Business Risk Report
Source: Ernst & Young

About EW Consultants
10
About Us
EW Consultants is One-Stop Risk Advisory solution provider. We provide solutions for all major Business, Financial and IT risk that your organization might be exposed to, at a very competitive cost. Our wide range of services will help you to deal with your specific and everyday challenges. Our Onsite - Offshore (Dual shore) operating model helps us provide our high quality services in the most cost efficient manner, so that our clients can sustain their compliance initiatives. We have a team of dedicated, experienced and highly qualified risk advisory professionals who have worked for Fortune 500 clients across countries including US, UK, Europe, Australia, New Zealand, Hong Kong, UAE and India. Our team comprises of CA, MBA, CIA, CISA, CFSA, CCNA, MCSE, ISO 9000 Auditor, Engineers and SAP certified professionals. Our team comes from diverse Big4 backgrounds, bringing extensive delivery and project management experience for rendering advisory services. EW Consultants is also supported by specialized partner firms of highly experienced advisory professionals, having a combined experience of over 400 man-years. Collectively, we brings a huge knowledge database to help our clients with best possible solution. Our advisory team consisting of CEOs, CIOs and CFOs of large corporations, who acts as our mentors in guiding us of the latest industry trends. Our Capabilities: Risk Advisory Audit and Assurance Consulting Regulatory Compliance Support Audit Process Outsourcing Corporate Trainings
11
Our Team
Basant Bhanuka Gourav Ladha
Basant
Advisory
Bhanuka,
Services,
Director
is
Business
for
Gourav
Ladha,
Director
Technology
responsible
Advisory Services, is responsible for ERP & IT risk solutions at EW Consultants He is a qualified MBA (Finance), Certified SAP professional, SAP GRC and Approva Bizright professional His major work expereinces comes from companies such as EXL Services, E&Y and SAPient Consulting His strength lies in ERP Business process controls, ERP Audit procedure documentation, User access and SOD, SAP GRC access controls, SOX and Clause 49 Complaince, Application controls, ERP
business risk solutions at EW Consultants He is a qualified Chartered Accountant, CISA, CIA, CFSA and M.Com His major work expereinces comes from companies such as EXL Services, PWC and midsize accounting firm His strength lies in Statutory and Internal Audit, Business Process Controls, Internal control mapping, Debt finance, Project report, and IFRS Convergence, Taxation and advisory, SOX compliance, User access SOD, Policy & Procedures Training Some of the major clients worked for includes Fortune 500 companies across
Benchmarking, Project management and

SAP Training Some of the major clients worked for DPSG, Diageo, Chartis, Volt, Duane Reade, Covansys, Centrica, Enercon, etc
various industry verticals in US, UK, Europe,

Hong Kong and India.
12
Our Services
13
Our Risk Advisory Services

Business Advisory
Business Process Controls Audit Internal Audit and Compliance Statutory Audit and Compliance Sarbanes Oxley (SOX) Financial Controls testing Spreadsheet Controls Audit Business Policy and Procedure Documentation AS-IS and TO-BE Process Documentation Business Process Mapping Process Improvement Project report preparation IFRS Convergence Debt Financing Support
ERP Advisory
ERP Business Process Controls Audit ERP Configurable Controls Audit
Technology Advisory
Network and Cloud Security Infrastructure Security Application Security Information Security Data Center Security Sarbanes Oxley (SOX) IT General Controls testing ITIL / COBIT Framework SAS 70 / SSAE 16 Business Continuity and Disaster Recovery advisory EUT / Software Testing IT Policy and Procedure Documentation
ERP User access and Segregation of duties Controls Audit

ERP Security Controls Audit ERP Audit Procedure Documentation SAP GRC Rule-set designing
ERP Pre Go-live Assessment

ERP TO-BE Process Document Review Sarbanes Oxley (SOX) Compliance assistance Statutory Audit Support for ERP Systems ERP Selection and Benchmarking
Project Quality Assurance, Compliance Support, Remediation Support, Corporate Trainings

14
How we can help!
Regulation & Compliance, Financial reporting controls & analytics, Financial Fraud controls, IFRS readiness, Financial Process restructuring, Business process improvement
Network & Infrastructure Security, Data Center Security, ERP & Application security, SAP GRC rule-set designing assistance, BCP & DRP, IT policy & procedures
Statutory audit support, Internal audit, special audits, ERP audit, IT general control audit, fraud audits, data center audit, EUT & spreadsheet controls audit
Reducing Cost of Compliance, SOX Compliance support, Risk management, SAS 70 / SSAE 16 support, Business controls, Business policy & procedure, Project assurance
15
Our Solution Map

Cloud / Intranet / Extranet Risk Solution ERP and Financial Application Risk Solution (SAP, Oracle Apps,
PeopleSoft, JD Edwards, Microsoft Great Plains, JDA MMS)
Data Center Risk Solution
Solution for every aspect of your business
Business Process, Compliance, EUT and Fraud Risk Solution
Network Infrastructure Risk Solution
Business Continuity and Disaster Recovery Risk Services
16
Our Value Chain Approach
Understand business process Identify potential risks
Assist in remediation
Audit Outsourcing
Business Advisory
Report gaps & suggest solutions
Technology Advisory
ERP Advisory
Develop control framework
Conduct test of controls
Document audit program
17
18

Requirement Gathering Project Management and Execution Discussion and Reporting Process Understanding Information Access
Requirement gathering will be performed from our Offshore Service Delivery Center (OSDC) Based on our understanding of client expectations we draft a document and system access requirement list Client is required to arrange for these items before we can set-up calls with the key users for process understanding Based on the understanding gained from the provided documents we will conduct specific discussions (conference calls) All our discussions will be documented in our Minutes of meeting (MoM) and will be shared with the key stakeholders to confirm our understanding before initiating project execution Based on our understanding gained from the discussions we would request the specific information for conducting our audit Client may be required to provide us Remote access to their information system Data received from the client will be stored at a secured database If required, an NDA may be provided Based on the data received, we will perform comprehensiv e review to analyze the data & identify the gap areas and improvement opportunities During the duration of the project, a dedicated Project Manager will organize weekly status update meetings to discuss the progress and escalations (if required) For last phase of the project, we will come onshore to client office for discussions
Last phase of the project will be utilized for discussing and finalizing the observations
After obtaining agreement on the issues from the management, a draft/final report along with our recommended solutions will be shared with the management, as a closure of the project
Offshore
Onsite
19
Benefits to your Organization
20
Benefits to your organization

Few of the benefits that your organization will derive from our services: Reduction in cost of compliance Our smart Offshore / Onshore dual delivery model helps you save over 40% on cost of your compliance activities We can help you leverage the existing control features, which can reduce the manual efforts and will help in increasing your return on investments (ROI) Secured and robust Business and IT environment from both internal and external threats such as unauthorized usage, fraud, intrusion, etc Controls ready Business and IT system to meet any existing or upcoming regulatory compliance requirement Our services not only provide appropriate assurance but also focuses on adding value to your business operation, processes and TT systems Increasing you market competitiveness by benchmarking your current business practices to the industry best practices
Maximizing ROI
Secured business
Compliance support Value beyond assurance
Best practices
21
Annexure
22
Sample Deliverables - Dashboard
23
Sample Deliverables - Report
24
Sample Deliverables - Deliverables

SOD Conflict Matrix for Record to Report Process
Voucher Entry/Batch Creation
I X
LHS/ RHS Activity Create GL Account Change GL Account Create Journal Entry Approve Journal Entry Post Journal Entry Change Document Maintain Accounting Period Payment Entry Voucher Entry/Batch Creation
Group A B C D E F G H I
A X X X X X X
B X X X X
C X X X
D X X X
E X X X
F X
X X X X X X
Payment Entry
H X
SOD Conflict Matrix - Record to Report
Maintain Accounting Period
Approve Journal Entry
Create Journal Entry
Change GL Account
Create GL Account
Change Document
Post Journal Entry
25
Sample Deliverables - Deliverables
26
End of Presentation. Thanks.

For enquires and more please contact:
Basant Bhanuka
Director, EW Consultants ACA, CISA, CIA, CFSA, M.Com Mobile : +91-974-800-6957 Website: www.ewcindia.co.in Email: basant.bhanuka@ewcindia.co.in
Gourav Ladha
Director, EW Consultants MBA, SAP Certified, SAP GRC Mobile : +91-971-295-2955 Website: www.ewcindia.co.in Email: gourav.ladha@ewcindia.co.in
27

For Discussion Purposes Only

Hochgeladen von

Dokumentinformationen

Originalbeschreibung:

Originaltitel

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

For Discussion Purposes Only

Hochgeladen von

Copyright:

Verfügbare Formate

Advisory Services