Representative Assignments
Our firm has provided information system governance, control, and consulting services
to many valued clients throughout the world.
We provide management, direction, and assistance to successfully deploy and maintain information systems that serve organizational needs. Our staff participate in all facets of information systems management, with special emphasis and expertise in control and security. We evaluate new or existing systems and supporting infrastructure, identify control weaknesses or other opportunities for improvement, design and recommend remedial actions, and direct or assist with their implementation.
Our key skill is problem solving of both management and technical issues.
We don't hand you problems, we give you solutions.
Example activities include:
Manage and assist with controls and security for information systems infrastructure. Conduct comprehensive assessments of computer and network security measures, operational procedures, system development and implementation process, and business resumption and disaster recovery capabilities. Define specific control and security mechanisms required to protect critical information resources and infrastructure. Lower risks and achieve significant improvements in the control environment.
Design, evaluate, and test controls within a wide array of sophisticated financial application systems. Apply unique combination of business and technology skills to address control requirements of non-traditional and highly-complex information systems. Through automation of control mechanisms, enhance reliability of information, reduce risk, and replace labour-intensive manual control procedures.
Develop and implement corporate security policies, standards and procedures. Increase management and staff awareness and understanding of control and security implications in the business, and compliance with required procedures.
Perform comprehensive management reviews, or assume senior management role, for information services area. Examine existing resource usage, recommend and implement cost-saving alternatives. Improve efficiency and effectiveness of system development methodology. Achieve significant cost reductions, while improving quality of service.
Award-winning speaker delivering numerous courses on computer control and security, both privately and on behalf of the Information Systems Audit and Control Association (ISACA, recognized as a global authority on information governance, control, security, and audit). To date, courses have been presented to thousands of audit and security professionals in over 40 cities on six continents. Consistently receive course ratings of over 80%, as well as frequent repeat participants.
Additional Experience
Partner in 50 Mission Security Consortium, a combination of independent consultants providing technical security evaluations, as well as security and controls education to security and audit professionals around the world.
Co-author of Teach Yourself NetWare in 14 Days (Sams Publishing) and Wireless Local Area Networks: Technology, Issues, and Strategies (McGraw-Hill), both distributed internationally in English and in foreign-language versions.
Co-author of Information Security Governance — Top Actions for Security Managers (IT Governance Institute), that provides key considerations, evaluation and performance criteria, information sources, and action-oriented initiatives to meet the information security governance requirements for Board Directors and Senior Management.
Delivered full-credit courses at Ontario universities on the subject of computer audit and security that met student educational requirements of the Institute of Chartered Accountants of Ontario.
Promoted business and public awareness on the use of computer technology, controls, and security. Included numerous television appearances, articles published in business periodicals and newspapers, and public speaking engagements.