Who We Are
We are a consulting firm offering full range of service in IT Advisory, Revenue Assurance, and Internal Audit Quality Assurance. We work with audit executives, management, and audit committees of companies of any size both private and public, to assist them with internal IT audit activities. We operate on an outsourced basis or working with an existing internal audit function to supplement their team where there is skill deficiency or inadequate staff.
- IT Risk Assessments - IT Audit risk assessment can serve as an important foundation for the risk based IT audit program. Our methodology helps crystalize the key risks to, or presented by, the IT environment related to the design and use of its technology, operations of its IT processes, and nature and execution of its technology projects.
- Security (Technology) Audits - Assessment of IT configurations and use of critical IT components are a common starting point and recurring element of an effective IT audit program. OryxAudit can bring to bear a wealth of tools, methodologies and experience in keys audits including external security vulnerability testing, internal security vulnerability testing, penetration testing, wireless security, database security, etc.
- IT Process Audit - Just as important as looking at technology itself are audits of underlying IT processes used to develop and maintain those systems and services they provide. It is often here that we find root causes for systems experiences at the technology layer. Our IT audit process program includes change management, application controls, business continuity, portfolio / program management, project management, security monitoring and response, backup and restoration, problem / incident management and user administration.
- IT Projects – IT projects are a major source of innovation and change for many companies. As such, the risks to the success of those projects usually deserve special attention. OryxAudit can provide a project specific view into the risk of inadequate project management, design and build not meeting requirements, and inadequate post-go-live control environment
- Data analytics – Data analytics capabilities are transforming the audit and raising the bar on quality and effectiveness. Our methodology analyses data sets in their entirety, gain more visibility across complicated organizational and operating structures, and intensify their focus on the areas of greatest audit risk and reporting complexity. It also enhances our ability to identify underlying patterns and anomalies when reviewing transactions and enables a more detailed understanding of an organization’s control environment and financial position