Case Study Eight: IT Controls/Cybersecurity - European Company

IT Controls / Cybersecurity

Details

A privately owned European pharmaceutical company with over $3 billion in revenue and limited experience with SOX compliance in the USA required audit expertise to document IT controls relative to IT operations for a division being purchased by a US company.

Engaged to assist the IT department and the Chief Information Officer with documenting IT controls necessary for compliance with SOX.

• Provided leadership for documentation of IT controls for SOX compliance
• Identified and documented risks surrounding the Company’s IT security relating to Oracle, SAP, and EDI applications
• Developed a project plan for IT control implementation efforts with key control owners and monitoring by management