SlideShare ist ein Scribd-Unternehmen logo

Internal Audit Solution

MetricStream Inc
MetricStream Inc
1 von 2
Downloaden Sie, um offline zu lesen
CASE STUDY MetricStream INTERNAL AUDIT SOLUTION FOR A GLOBAL BANK Overview One of the world’s leading global wealth management, a top global investment banking and securities firm, and one of the largest global asset management company having billions in client asset. Challenge Currently, the Internal Audit Group supports the bank’s internal audit processes, from risk assessment to issue tracking, with multiple point solutions and software applications which includes in-house developed applications, legacy applications as well as vendor solutions. The bank’s plan is to replace the existing silos of disintegrated internal audit systems with a new, fully integrated and state-of- theart solution that would foster oversight and transparency and ensure compliance with the banks Customer standards. The implementation of the new solution should also result in significant efficiency gains A TOP GLOBAL BANK through improved user support, in particular the elimination of duplicity and ease of use. The solution should be able to eliminate errors and inconsistencies through standardized data collection and analyze process across the enterprise. Benefits The solution should also enable the bank to comply with a vast number of national and international regulations across its vast global operation such as compliance with Client Identifying Data (CID), Provides a systematic and consistent riskbased in- Bank secrecy act, etc. Further, the system should interface and integrate with a number of external ternal audit process across business units, divisions, systems that are a part of the existing IT infrastructure at bank. While the bank intends to implement global locations and sites a new Internal Audit System, it has established audit management processes that are based on the best practices in the industry and the solution has to be flexible and adaptable to enable the bank to Increases the efficiency of the audit process and preserve these processes while ensuring smooth adoption and implementation of these established shorten cycle times as tasks are automatically as- processes across its operations consistently and efficiently. Moreover, the system should be highly signed and tracked from one stage to the next flexible for it to easily support the future business needs as well as the evolving business processes. Improves communication and teamwork on complex audit processes across departments and functional Evaluation and Selection areas The bank undertook a comprehensive evaluation of the existing incumbent vendor along with all the Eliminates audit errors and inconsistencies with a leading GRC platform vendors. The systems were examined in detail for integrated capabilities of standardized data collection and analysis process Internal Audit and Risk Management along with Compliance and Document Management. Compre- across the enterprise hensive functionality such as micro risk assessment, audit inventory, operational planning, audit scheduling, audit plan execution, work-paper management, audit issue monitoring and followup, issue Accelerates and streamline the internal audit cycle, tracking, document management, etc was key to success for the bank. including development of findings, recommendations, action plans and closure cycles by implementing a closed-loop process for internal audit management In addition to the functional requirements, the evaluation process involved performing severe security tests, load and stress tests, integration tests, architecture compatibility tests, etc on the pilot de- Provides enterprise-wide visibility into the audit ployed in multiple locations. process and metrics for better risk management and assured compliance After an extensive evaluation over a period of six months, MetricStream emerged as their preferred Improves the efficiency of the audit staff enabling choice. The MetricStream’s Internal Audit solution was proven to scale globally and the platform ap- them to be focused on more valueoriented functions proach provided an edge for its ability to provide an integrated GRC solution, which not only includes such as analyzing and recognizing trends in the audit Internal Audit and Risk management but also Compliance and Document management. data Solution The MetricStream solution will enhance the internal audit team’s productivity by enabling it to unify and analyze cross-departmental audit data, quickly and efficiently. The team will now be able to ac- cess the data directly from a centralized data repository with multiple auditors working simultaneously across the globe. The solution will also enable the auditors to record, track, and monitor qualitative or quantitative audit findings across different business groups and across different geographies. The findings will be re- tained along with all the detailed observations and recommendations in predefined formats. A unique offline capability that allows auditors to enter audit findings in notebook, computers, or handheld devices at remote field sites will be provided. Further, the solution will include time-tracking capability to capture the time spent in auditing for optimal resource utilization.
MetricStream The MetricStream platform includes built-in workflows for reviewing responses for approval or rejec- Why MetricStream tion with options to initiate remedial actions for undesirable variations and trends, and to schedule follow-up audits. This will enable the system to automatically route audit findings, observation reports, Scalability: The MetricStream solution proved its and auditors’ recommendations for review and subsequent actions to the audited entity. mettle through pilot rollout across multiple locations for its ability to provide a highly flexible solution that The MetricStream platform’s built-in reporting engine will provide comprehensive capabilities to the can adopt new complex business process, scale-up bank for compiling audit reports and work-papers. It will allow access to the bank’s data and history, globally without sacrificing performance, integrate with multiple bank systems for exchange of data, etc. and performance analysis of the auditors. Graphical executive dashboards and flexible reports with MetricStream Enterprise Compliance Platform archi- drill-down capability will provide statistics on a variety of parameters including audited entities, audit tecture emerged as highly scalable with the ability to schedule and calendar, filed reports, and corrective and remediation actions triggered. support increasing number of transactions, users, and data volume. Over 10,000 users access the system and scalability was a key driver for MetricStream’s The solution will also support the handling of highly sensitive data (e.g. Client Identifying Data, selection. personal information) globally, i.e. no cross border access of certain data types is possible. A flagging mechanism identifies a certain information or record as sensitive and the store of that information is Comprehensive Functionality: The solution was ex- handled in a specialized manner such as storing in a specific instance of a database or encryption of amined for integrated end-to-end internal audit func- the data stored. tionality for managing the complete audit lifecycle. MetricStream’s broad suite of web-based solutions that are designed to enable banks to manage risk and compliance management processes and activities across a wide range of disciplines, including auditing, regulatory compliance, risk management, industry standards, quality programs and other corporate governance initiatives. Technology Platform: MetricStream Enterprise Com- pliance Platform technology architecture provided unmatched configurability and integration capability – elements that were imperative for success of the project. The platform is designed to serve as the nucleus of an organizations’ corporate governance ecosystem, coordinating all GRC management activi- ties throughout the enterprise via a single manage- ment system. For more information, visit www.metricstream.com Copyright 2011. All Rights Reserved.

Empfohlen

Myths of validation
Myths of validationMyths of validation
Myths of validationJeff Thomas
 
A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance MetricStream Inc
 
AMC Optimized Data Protection Strategy
AMC Optimized Data Protection StrategyAMC Optimized Data Protection Strategy
AMC Optimized Data Protection Strategytcollins3413
 
Implementation of image based cheque clearance
Implementation of image based cheque clearanceImplementation of image based cheque clearance
Implementation of image based cheque clearanceNewgen Software Technologies Limited
 
McKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Performance Management
 
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Montrium
 
How auditable is your disaster recovery program
How auditable is your disaster recovery programHow auditable is your disaster recovery program
How auditable is your disaster recovery programgeekmodeboy
 
Phase II of the Core Transformation Journey - Getting There
Phase II of the Core Transformation Journey - Getting TherePhase II of the Core Transformation Journey - Getting There
Phase II of the Core Transformation Journey - Getting ThereInfosys Finacle
 

Empfohlen

Myths of validation
Myths of validationMyths of validation
Myths of validationJeff Thomas
 
A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance MetricStream Inc
 
AMC Optimized Data Protection Strategy
AMC Optimized Data Protection StrategyAMC Optimized Data Protection Strategy
AMC Optimized Data Protection Strategytcollins3413
 
Implementation of image based cheque clearance
Implementation of image based cheque clearanceImplementation of image based cheque clearance
Implementation of image based cheque clearanceNewgen Software Technologies Limited
 
McKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Performance Management
 
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Montrium
 
How auditable is your disaster recovery program
How auditable is your disaster recovery programHow auditable is your disaster recovery program
How auditable is your disaster recovery programgeekmodeboy
 
Phase II of the Core Transformation Journey - Getting There
Phase II of the Core Transformation Journey - Getting TherePhase II of the Core Transformation Journey - Getting There
Phase II of the Core Transformation Journey - Getting ThereInfosys Finacle
 
Sarbanes oxley compliance
Sarbanes oxley complianceSarbanes oxley compliance
Sarbanes oxley complianceMetricStream Inc
 
Msfairchildcasestudy
MsfairchildcasestudyMsfairchildcasestudy
MsfairchildcasestudyMetricStream Inc
 
The App Sec How-To: Choosing a SAST Tool
The App Sec How-To: Choosing a SAST ToolThe App Sec How-To: Choosing a SAST Tool
The App Sec How-To: Choosing a SAST ToolCheckmarx
 
Chapter 2 auditing it governance controls
Chapter 2 auditing it governance controlsChapter 2 auditing it governance controls
Chapter 2 auditing it governance controlsjayussuryawan
 
Auditing Systems Development
Auditing Systems DevelopmentAuditing Systems Development
Auditing Systems Developmentessbaih
 
Clinical Trial Management System Implementation Guide
Clinical Trial Management System Implementation GuideClinical Trial Management System Implementation Guide
Clinical Trial Management System Implementation GuidePerficient, Inc.
 
Audit of it infrastructure
Audit of it infrastructureAudit of it infrastructure
Audit of it infrastructurepramod_kmr73
 
Computer System Validation – Reduce Costs and Avoid 483s
Computer System Validation – Reduce Costs and Avoid 483sComputer System Validation – Reduce Costs and Avoid 483s
Computer System Validation – Reduce Costs and Avoid 483sReferral
 
How to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureHow to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureNetwrix Corporation
 
Industry - Testing & Quality Assurance in Data Migration Projects
Industry - Testing & Quality Assurance in Data Migration Projects Industry - Testing & Quality Assurance in Data Migration Projects
Industry - Testing & Quality Assurance in Data Migration Projects ICSM 2011
 
Chap3 2007 Cisa Review Course
Chap3 2007 Cisa Review CourseChap3 2007 Cisa Review Course
Chap3 2007 Cisa Review CourseDesmond Devendran
 
Product Brief – Plutora Environments
Product Brief – Plutora EnvironmentsProduct Brief – Plutora Environments
Product Brief – Plutora EnvironmentsPlutora
 
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...IJDKP
 
Cisa exam mock test questions-1
Cisa exam mock test questions-1Cisa exam mock test questions-1
Cisa exam mock test questions-1Hemang Doshi
 
Ch2 2009 cisa
Ch2 2009 cisaCh2 2009 cisa
Ch2 2009 cisaasrulsani09
 
Computer system overview
Computer system overviewComputer system overview
Computer system overviewVikrant Singh Parmar
 
des
desdes
desDesmond Devendran
 
Itauditcl
ItauditclItauditcl
Itauditclankukgoyal
 
TA security
TA securityTA security
TA securitykesavars
 
Analysis and Control of Computing Systems
Analysis and Control of Computing SystemsAnalysis and Control of Computing Systems
Analysis and Control of Computing Systemsnorhavillegas
 
Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream MetricStream Inc
 
Quality Audit Management – Food Industry
Quality Audit Management – Food Industry Quality Audit Management – Food Industry
Quality Audit Management – Food Industry MetricStream Inc
 

Weitere ähnliche Inhalte

Was ist angesagt?

The App Sec How-To: Choosing a SAST Tool
The App Sec How-To: Choosing a SAST ToolThe App Sec How-To: Choosing a SAST Tool
The App Sec How-To: Choosing a SAST ToolCheckmarx
 
Chapter 2 auditing it governance controls
Chapter 2 auditing it governance controlsChapter 2 auditing it governance controls
Chapter 2 auditing it governance controlsjayussuryawan
 
Auditing Systems Development
Auditing Systems DevelopmentAuditing Systems Development
Auditing Systems Developmentessbaih
 
Clinical Trial Management System Implementation Guide
Clinical Trial Management System Implementation GuideClinical Trial Management System Implementation Guide
Clinical Trial Management System Implementation GuidePerficient, Inc.
 
Audit of it infrastructure
Audit of it infrastructureAudit of it infrastructure
Audit of it infrastructurepramod_kmr73
 
Computer System Validation – Reduce Costs and Avoid 483s
Computer System Validation – Reduce Costs and Avoid 483sComputer System Validation – Reduce Costs and Avoid 483s
Computer System Validation – Reduce Costs and Avoid 483sReferral
 
How to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureHow to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureNetwrix Corporation
 
Industry - Testing & Quality Assurance in Data Migration Projects
Industry - Testing & Quality Assurance in Data Migration Projects Industry - Testing & Quality Assurance in Data Migration Projects
Industry - Testing & Quality Assurance in Data Migration Projects ICSM 2011
 
Chap3 2007 Cisa Review Course
Chap3 2007 Cisa Review CourseChap3 2007 Cisa Review Course
Chap3 2007 Cisa Review CourseDesmond Devendran
 
Product Brief – Plutora Environments
Product Brief – Plutora EnvironmentsProduct Brief – Plutora Environments
Product Brief – Plutora EnvironmentsPlutora
 
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...IJDKP
 
Cisa exam mock test questions-1
Cisa exam mock test questions-1Cisa exam mock test questions-1
Cisa exam mock test questions-1Hemang Doshi
 
TA security
TA securityTA security
TA securitykesavars
 
Analysis and Control of Computing Systems
Analysis and Control of Computing SystemsAnalysis and Control of Computing Systems
Analysis and Control of Computing Systemsnorhavillegas
 

Was ist angesagt? (20)

Sarbanes oxley compliance
Sarbanes oxley complianceSarbanes oxley compliance
Sarbanes oxley compliance
 
Msfairchildcasestudy
MsfairchildcasestudyMsfairchildcasestudy
Msfairchildcasestudy
 
The App Sec How-To: Choosing a SAST Tool
The App Sec How-To: Choosing a SAST ToolThe App Sec How-To: Choosing a SAST Tool
The App Sec How-To: Choosing a SAST Tool
 
Chapter 2 auditing it governance controls
Chapter 2 auditing it governance controlsChapter 2 auditing it governance controls
Chapter 2 auditing it governance controls
 
Auditing Systems Development
Auditing Systems DevelopmentAuditing Systems Development
Auditing Systems Development
 
Clinical Trial Management System Implementation Guide
Clinical Trial Management System Implementation GuideClinical Trial Management System Implementation Guide
Clinical Trial Management System Implementation Guide
 
Audit of it infrastructure
Audit of it infrastructureAudit of it infrastructure
Audit of it infrastructure
 
Computer System Validation – Reduce Costs and Avoid 483s
Computer System Validation – Reduce Costs and Avoid 483sComputer System Validation – Reduce Costs and Avoid 483s
Computer System Validation – Reduce Costs and Avoid 483s
 
How to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureHow to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT Infrastructure
 
Industry - Testing & Quality Assurance in Data Migration Projects
Industry - Testing & Quality Assurance in Data Migration Projects Industry - Testing & Quality Assurance in Data Migration Projects
Industry - Testing & Quality Assurance in Data Migration Projects
 
Chap3 2007 Cisa Review Course
Chap3 2007 Cisa Review CourseChap3 2007 Cisa Review Course
Chap3 2007 Cisa Review Course
 
Product Brief – Plutora Environments
Product Brief – Plutora EnvironmentsProduct Brief – Plutora Environments
Product Brief – Plutora Environments
 
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...
PROCESS ENGINEERING AND AI SALES PREDICTION: THE CASE STUDY OF AN ITALIAN SMA...
 
Cisa exam mock test questions-1
Cisa exam mock test questions-1Cisa exam mock test questions-1
Cisa exam mock test questions-1
 
Ch2 2009 cisa
Ch2 2009 cisaCh2 2009 cisa
Ch2 2009 cisa
 
Computer system overview
Computer system overviewComputer system overview
Computer system overview
 
des
desdes
des
 
Itauditcl
ItauditclItauditcl
Itauditcl
 
TA security
TA securityTA security
TA security
 
Analysis and Control of Computing Systems
Analysis and Control of Computing SystemsAnalysis and Control of Computing Systems
Analysis and Control of Computing Systems
 

Ähnlich wie Internal Audit Solution

Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream MetricStream Inc
 
Quality Audit Management – Food Industry
Quality Audit Management – Food Industry Quality Audit Management – Food Industry
Quality Audit Management – Food Industry MetricStream Inc
 
Quality Management System
Quality Management System Quality Management System
Quality Management System MetricStream Inc
 
Governance of agile SW projects · White Paper
Governance of agile SW projects · White PaperGovernance of agile SW projects · White Paper
Governance of agile SW projects · White PaperpliXos GmbH
 
Payment giant-automates-internal-audit
Payment giant-automates-internal-auditPayment giant-automates-internal-audit
Payment giant-automates-internal-auditMetricStream Inc
 
Technology assessment case study implementation and adoption of a statistical...
Technology assessment case study implementation and adoption of a statistical...Technology assessment case study implementation and adoption of a statistical...
Technology assessment case study implementation and adoption of a statistical...D-Wise
 
Whitepaper: Datacenter Migration - Happiest Minds
Whitepaper: Datacenter Migration - Happiest MindsWhitepaper: Datacenter Migration - Happiest Minds
Whitepaper: Datacenter Migration - Happiest MindsHappiest Minds Technologies
 
Covance Accelerator Methodology Delivers Validated Oracle Argus Cloud in Reco...
Covance Accelerator Methodology Delivers Validated Oracle Argus Cloud in Reco...Covance Accelerator Methodology Delivers Validated Oracle Argus Cloud in Reco...
Covance Accelerator Methodology Delivers Validated Oracle Argus Cloud in Reco...Covance
 
Quality Management System by NextDocs
Quality Management System by NextDocsQuality Management System by NextDocs
Quality Management System by NextDocsNextDocs
 
NetWrix Change Reporter Suite - Product Review by Don Jones
NetWrix Change Reporter Suite - Product Review by Don JonesNetWrix Change Reporter Suite - Product Review by Don Jones
NetWrix Change Reporter Suite - Product Review by Don JonesNetwrix Corporation
 
Fixnix GRC Suite A Glance
Fixnix GRC Suite A GlanceFixnix GRC Suite A Glance
Fixnix GRC Suite A GlanceFixNix Inc.,
 
Enterprise Risk Management Solutions
Enterprise Risk Management SolutionsEnterprise Risk Management Solutions
Enterprise Risk Management SolutionsLexComply
 
19701759 project-report-on-railway-reservation-system-by-amit-mittal
19701759 project-report-on-railway-reservation-system-by-amit-mittal19701759 project-report-on-railway-reservation-system-by-amit-mittal
19701759 project-report-on-railway-reservation-system-by-amit-mittalsatyaragha786
 
Srujana Unnam Microstrategy Profile
Srujana Unnam Microstrategy ProfileSrujana Unnam Microstrategy Profile
Srujana Unnam Microstrategy Profilesrujana unnam
 
Compliane software-solutions
Compliane software-solutionsCompliane software-solutions
Compliane software-solutionsMetricStream Inc
 
Accenture-Applying-Analytics-Transform-Internal-Audit-for-High-Performance
Accenture-Applying-Analytics-Transform-Internal-Audit-for-High-PerformanceAccenture-Applying-Analytics-Transform-Internal-Audit-for-High-Performance
Accenture-Applying-Analytics-Transform-Internal-Audit-for-High-PerformanceDave Hildebrand
 

Ähnlich wie Internal Audit Solution (20)

Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream
 
Quality Audit Management – Food Industry
Quality Audit Management – Food Industry Quality Audit Management – Food Industry
Quality Audit Management – Food Industry
 
Quality Management System
Quality Management System Quality Management System
Quality Management System
 
Governance of agile SW projects · White Paper
Governance of agile SW projects · White PaperGovernance of agile SW projects · White Paper
Governance of agile SW projects · White Paper
 
Payment giant-automates-internal-audit
Payment giant-automates-internal-auditPayment giant-automates-internal-audit
Payment giant-automates-internal-audit
 
Technology assessment case study implementation and adoption of a statistical...
Technology assessment case study implementation and adoption of a statistical...Technology assessment case study implementation and adoption of a statistical...
Technology assessment case study implementation and adoption of a statistical...
 
Whitepaper: Datacenter Migration - Happiest Minds
Whitepaper: Datacenter Migration - Happiest MindsWhitepaper: Datacenter Migration - Happiest Minds
Whitepaper: Datacenter Migration - Happiest Minds
 
Covance Accelerator Methodology Delivers Validated Oracle Argus Cloud in Reco...
Covance Accelerator Methodology Delivers Validated Oracle Argus Cloud in Reco...Covance Accelerator Methodology Delivers Validated Oracle Argus Cloud in Reco...
Covance Accelerator Methodology Delivers Validated Oracle Argus Cloud in Reco...
 
Quality Management System by NextDocs
Quality Management System by NextDocsQuality Management System by NextDocs
Quality Management System by NextDocs
 
NetWrix Change Reporter Suite - Product Review by Don Jones
NetWrix Change Reporter Suite - Product Review by Don JonesNetWrix Change Reporter Suite - Product Review by Don Jones
NetWrix Change Reporter Suite - Product Review by Don Jones
 
Profile_Kishore Sundar
Profile_Kishore SundarProfile_Kishore Sundar
Profile_Kishore Sundar
 
PM
PMPM
PM
 
Fixnix GRC Suite A Glance
Fixnix GRC Suite A GlanceFixnix GRC Suite A Glance
Fixnix GRC Suite A Glance
 
Auto audit
Auto auditAuto audit
Auto audit
 
Enterprise Risk Management Solutions
Enterprise Risk Management SolutionsEnterprise Risk Management Solutions
Enterprise Risk Management Solutions
 
19701759 project-report-on-railway-reservation-system-by-amit-mittal
19701759 project-report-on-railway-reservation-system-by-amit-mittal19701759 project-report-on-railway-reservation-system-by-amit-mittal
19701759 project-report-on-railway-reservation-system-by-amit-mittal
 
Nirupama_Ragunathan
Nirupama_RagunathanNirupama_Ragunathan
Nirupama_Ragunathan
 
Srujana Unnam Microstrategy Profile
Srujana Unnam Microstrategy ProfileSrujana Unnam Microstrategy Profile
Srujana Unnam Microstrategy Profile
 
Compliane software-solutions
Compliane software-solutionsCompliane software-solutions
Compliane software-solutions
 
Accenture-Applying-Analytics-Transform-Internal-Audit-for-High-Performance
Accenture-Applying-Analytics-Transform-Internal-Audit-for-High-PerformanceAccenture-Applying-Analytics-Transform-Internal-Audit-for-High-Performance
Accenture-Applying-Analytics-Transform-Internal-Audit-for-High-Performance
 

Mehr von MetricStream Inc

Regulatory relationship-management
Regulatory relationship-managementRegulatory relationship-management
Regulatory relationship-managementMetricStream Inc
 
Next generation-risk-management-solution
Next generation-risk-management-solutionNext generation-risk-management-solution
Next generation-risk-management-solutionMetricStream Inc
 
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream Inc
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-ormMetricStream Inc
 
Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry MetricStream Inc
 
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA MetricStream Inc
 
Supplier quality-compliance
Supplier quality-complianceSupplier quality-compliance
Supplier quality-complianceMetricStream Inc
 
Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry MetricStream Inc
 
Health insurance compliance
Health insurance complianceHealth insurance compliance
Health insurance complianceMetricStream Inc
 
Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS MetricStream Inc
 
Healthcare Audit Compliance
Healthcare Audit Compliance Healthcare Audit Compliance
Healthcare Audit Compliance MetricStream Inc
 
NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions MetricStream Inc
 
Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control MetricStream Inc
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk managementMetricStream Inc
 
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management MetricStream Inc
 
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...MetricStream Inc
 

Mehr von MetricStream Inc (20)

Regulatory relationship-management
Regulatory relationship-managementRegulatory relationship-management
Regulatory relationship-management
 
Next generation-risk-management-solution
Next generation-risk-management-solutionNext generation-risk-management-solution
Next generation-risk-management-solution
 
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-orm
 
Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry
 
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
 
Supplier quality-compliance
Supplier quality-complianceSupplier quality-compliance
Supplier quality-compliance
 
Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry
 
NERC Compliance Solution
NERC Compliance Solution NERC Compliance Solution
NERC Compliance Solution
 
Health insurance compliance
Health insurance complianceHealth insurance compliance
Health insurance compliance
 
Iso9000 compliance
Iso9000 complianceIso9000 compliance
Iso9000 compliance
 
Energy Risk Management
Energy Risk Management Energy Risk Management
Energy Risk Management
 
Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS
 
Healthcare Audit Compliance
Healthcare Audit Compliance Healthcare Audit Compliance
Healthcare Audit Compliance
 
NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions
 
Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control
 
Audit solution airline
Audit solution airlineAudit solution airline
Audit solution airline
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
 
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
 
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
 

Internal Audit Solution

  • 1. CASE STUDY MetricStream INTERNAL AUDIT SOLUTION FOR A GLOBAL BANK Overview One of the world’s leading global wealth management, a top global investment banking and securities firm, and one of the largest global asset management company having billions in client asset. Challenge Currently, the Internal Audit Group supports the bank’s internal audit processes, from risk assessment to issue tracking, with multiple point solutions and software applications which includes in-house developed applications, legacy applications as well as vendor solutions. The bank’s plan is to replace the existing silos of disintegrated internal audit systems with a new, fully integrated and state-of- theart solution that would foster oversight and transparency and ensure compliance with the banks Customer standards. The implementation of the new solution should also result in significant efficiency gains A TOP GLOBAL BANK through improved user support, in particular the elimination of duplicity and ease of use. The solution should be able to eliminate errors and inconsistencies through standardized data collection and analyze process across the enterprise. Benefits The solution should also enable the bank to comply with a vast number of national and international regulations across its vast global operation such as compliance with Client Identifying Data (CID), Provides a systematic and consistent riskbased in- Bank secrecy act, etc. Further, the system should interface and integrate with a number of external ternal audit process across business units, divisions, systems that are a part of the existing IT infrastructure at bank. While the bank intends to implement global locations and sites a new Internal Audit System, it has established audit management processes that are based on the best practices in the industry and the solution has to be flexible and adaptable to enable the bank to Increases the efficiency of the audit process and preserve these processes while ensuring smooth adoption and implementation of these established shorten cycle times as tasks are automatically as- processes across its operations consistently and efficiently. Moreover, the system should be highly signed and tracked from one stage to the next flexible for it to easily support the future business needs as well as the evolving business processes. Improves communication and teamwork on complex audit processes across departments and functional Evaluation and Selection areas The bank undertook a comprehensive evaluation of the existing incumbent vendor along with all the Eliminates audit errors and inconsistencies with a leading GRC platform vendors. The systems were examined in detail for integrated capabilities of standardized data collection and analysis process Internal Audit and Risk Management along with Compliance and Document Management. Compre- across the enterprise hensive functionality such as micro risk assessment, audit inventory, operational planning, audit scheduling, audit plan execution, work-paper management, audit issue monitoring and followup, issue Accelerates and streamline the internal audit cycle, tracking, document management, etc was key to success for the bank. including development of findings, recommendations, action plans and closure cycles by implementing a closed-loop process for internal audit management In addition to the functional requirements, the evaluation process involved performing severe security tests, load and stress tests, integration tests, architecture compatibility tests, etc on the pilot de- Provides enterprise-wide visibility into the audit ployed in multiple locations. process and metrics for better risk management and assured compliance After an extensive evaluation over a period of six months, MetricStream emerged as their preferred Improves the efficiency of the audit staff enabling choice. The MetricStream’s Internal Audit solution was proven to scale globally and the platform ap- them to be focused on more valueoriented functions proach provided an edge for its ability to provide an integrated GRC solution, which not only includes such as analyzing and recognizing trends in the audit Internal Audit and Risk management but also Compliance and Document management. data Solution The MetricStream solution will enhance the internal audit team’s productivity by enabling it to unify and analyze cross-departmental audit data, quickly and efficiently. The team will now be able to ac- cess the data directly from a centralized data repository with multiple auditors working simultaneously across the globe. The solution will also enable the auditors to record, track, and monitor qualitative or quantitative audit findings across different business groups and across different geographies. The findings will be re- tained along with all the detailed observations and recommendations in predefined formats. A unique offline capability that allows auditors to enter audit findings in notebook, computers, or handheld devices at remote field sites will be provided. Further, the solution will include time-tracking capability to capture the time spent in auditing for optimal resource utilization.
  • 2. MetricStream The MetricStream platform includes built-in workflows for reviewing responses for approval or rejec- Why MetricStream tion with options to initiate remedial actions for undesirable variations and trends, and to schedule follow-up audits. This will enable the system to automatically route audit findings, observation reports, Scalability: The MetricStream solution proved its and auditors’ recommendations for review and subsequent actions to the audited entity. mettle through pilot rollout across multiple locations for its ability to provide a highly flexible solution that The MetricStream platform’s built-in reporting engine will provide comprehensive capabilities to the can adopt new complex business process, scale-up bank for compiling audit reports and work-papers. It will allow access to the bank’s data and history, globally without sacrificing performance, integrate with multiple bank systems for exchange of data, etc. and performance analysis of the auditors. Graphical executive dashboards and flexible reports with MetricStream Enterprise Compliance Platform archi- drill-down capability will provide statistics on a variety of parameters including audited entities, audit tecture emerged as highly scalable with the ability to schedule and calendar, filed reports, and corrective and remediation actions triggered. support increasing number of transactions, users, and data volume. Over 10,000 users access the system and scalability was a key driver for MetricStream’s The solution will also support the handling of highly sensitive data (e.g. Client Identifying Data, selection. personal information) globally, i.e. no cross border access of certain data types is possible. A flagging mechanism identifies a certain information or record as sensitive and the store of that information is Comprehensive Functionality: The solution was ex- handled in a specialized manner such as storing in a specific instance of a database or encryption of amined for integrated end-to-end internal audit func- the data stored. tionality for managing the complete audit lifecycle. MetricStream’s broad suite of web-based solutions that are designed to enable banks to manage risk and compliance management processes and activities across a wide range of disciplines, including auditing, regulatory compliance, risk management, industry standards, quality programs and other corporate governance initiatives. Technology Platform: MetricStream Enterprise Com- pliance Platform technology architecture provided unmatched configurability and integration capability – elements that were imperative for success of the project. The platform is designed to serve as the nucleus of an organizations’ corporate governance ecosystem, coordinating all GRC management activi- ties throughout the enterprise via a single manage- ment system. For more information, visit www.metricstream.com Copyright 2011. All Rights Reserved.