In a world of Corporate Governance where there is clear accountability and responsibility, it is essential that the mechanisms, processes and relations essential for that governance are proven.

Security Audits are a method by which the details behind the formulation of a business’s Risk Management system, feeding into the compliance regime can be proven.  Details taken from reporting systems, guards acting on instructions or staff complying with procedures are key indicators of an ongoing Risk assessment.  Those details should be subject to a process which validates that and other information being presented.

The more remote that services are provided, perhaps through outsourcing and a contract that might be managed by another department, the more diluted the original intent may have become. The use of software solutions in collating and presenting information is only as good as the information being input and the interpretations made from it.  Without periodic verification and auditing through the systematic exploitation of the processes, procedures and people involved, only assumptions can be made on the reliability of what is being presented.

At RedLeaf Consultancy we undertake Security Audits, not only in a binary fashion, where procedures either are or are not being followed, but carried out with the experience and understanding of security.  This allows an individual subject to be explored in depth and how that fits into the overall Risk picture. 

• Twitter
• Instagram
• LinkedIn

Writing

Lessons from remote interviewing
April 2020

What design mentees need
December 2019

How to foster collaboration
November 2019