IT Audit Consulting

Our IT security risk management services help organizations mitigate risks to their mission-critical data and systems.

Every organization needs to balance its users' technology needs — speed, ease of use and convenience — against the critical need to keep information safe and secure against a variety of sophisticated threats and potential liability. This is why every organization needs to perform information technology audits.

Our IT audits help you ensure that systems optimally support your organization's strategic vision. Together with your audit work plan, our IT audit consultants contribute to your organization's risk assessment process. Through this process, we conduct a variety of IT audits - which are customized to your business - that address security, compliance performance and overall risk.

To help improve your business productivity and mitigate information technology risks, we offer Auditor Assistant — an integrated software solution that enhances collaboration, automation and insight into your organization, helping you efficiently manage and conduct operational, information technology and financial audits and engagements.

In addition to our IT audit services, RSM'S additional security risk management services include:

  • External financial audit information technology support
  • FDICIA external financial audit information technology support
  • FDICIA information technology testing
  • SOX information technology general controls―consulting services

When you're ready to re-evaluate your information technology audit processes for possible improvement, give us a call.

We're keen to begin the discussion and learn more about your specific needs.

Popular Insights

Managing risk with third parties or intermediaries


Managing risk with third parties or intermediaries

When overseeing third parties, details matter. RSM provides tips on how to manage third-party risks and best practices to follow.

  • Greg Naviloff , Rick Shriner
  • |
  • August 18, 2017


Effectively performing SoD and sensitive access assessments for ERPs

Performing automated SoD assessments with GRC tools can help you better manage ERP risks and fraud amid a stronger regulatory environment.

  • Kari Sklenka-Gordon
  • |
  • December 06, 2016


Beyond HIPAA compliance

Collaboration and alignment between IT audit and IT security helps health care organizations better manage information security risks.

  • Jonathan Dreasler, Adam Keagle, Greg Vetter
  • |
  • June 29, 2016


White Paper: Avoiding risk when choosing managed IT services provider

The use of managed Information Technology services is growing due to greater efficiency and cost savings, but organizations must be careful to avoid increased risk.

  • Danny Collins
  • |
  • June 30, 2015


Top 10 SAP audit and security risks

With hackers increasingly targeting ERP system vulnerabilities, companies must know and address potential risks to their SAP systems.

  • Luke Leaon


Flexible IT audits address bank’s emerging risks and improves controls

A proactive, customized IT audit program addresses emerging risks, strengthens controls and positions a community bank for continued growth.

  • February 07, 2014

How can we help you?

Contact us by phone 800.274.3978 or
submit your questions, comments, or proposal requests.

Receive Risk Bulletin by Email


Cybersecurity Rapid Assessment®

Complete our Cybersecurity Rapid Assessment form to be contacted about receiving our "quick-hit" evaluation of your organization’s overall security risk.




Meet RSM at the 2018 IIA GRC Conference!

  • August 13, 2018


Understanding the impact of the NAIC Data Security Model Law

  • August 09, 2018