Risk , IT Governance

& Internal Control

Risk Management
Audit
Internal Control
ISMS*

Matrix under MS-Excel

Constraints for
companies
• Time consuming
• Important costs
• Everything is manual
• Matrices are hard to read
• Long and not functinnal processing
• Problematic information feedback
• Level of compliance hard to identify

*ISMS : Information Security Management System

 Make your process control more functional

• Internal Control &

Compliance Management

• Risk Management

• Audit

• Information Security
Management System (ISMS)
AIMS : Advanxis Integrated Management System
 • Internal Control & Compliance Management

• Repositories management
• Internal control questionnaires
• Documentation, evaluation and testing
• Action plans
• Analysis and reporting
• Regulatory monitoring
+++

• Governance by Business Unit & consolidate

reporting group
• Permanently measure the level of
compliance
• Real-time permanent dynamic audit
• Control and review of the results:
effectiveness and efficiency of the processes
• Internal Control & Compliance Management

Context and issues:

A Hedge fund in London wishes to ascertain that it complies with
the requirements of Sarbannes-Oxley and all the other regulations
to which the group is subjected.
Benefits of Advanxis :
• Manage several types of campaign of evaluation campaign to
control financial risk
• Manage internal control of IS
• The propose application solution from the installation to the
administration is easy to use.
 • Risk Management

• Risk identification
• Risk evaluation
• Risk treatment
• Risk mapping and reporting
• Collect and follow-up incidents
+++

• Risk mapping and financial impacts

• Dynamic steering of action plans
• Evaluation of financial and operational
risks
• Publication of supervision map
 • Risk Management

Context and issues:

A french large industry player wishes to conceive a risk
management initiative within his group. Its objective is to set up a
risk management process to analyse causes and consequences, set
up a risk mapping and identify means of prevention.

Benefits of Advanxis :
• Evolutionary aspects both in the risks control and management
support to decision-making,
• Easy parametrization and user friendliness,
• Implementation of dynamic risk mapping in real-time.
 • Audit

• Creation of audit plans

• Planning and follow-up of the audits
• Realization of audit mission
• Action plans recommendations and
follow-up

+++

• Permanent dynamic audit

• Real-time publication of the audit report
• Reduction of cost
 • Audit

Context and issues:

A french large industry player wishes to evaluate all entities in
regards to a repository of good work ethics and to follow the
implementation of these practices through internal and
external audits.

Benefits of Advanxis:
•Legibility and complete functionality,
•The solution is flexible, adaptable and progressive with a
fast deployment on all the entities,
•Permanent and dynamic audit allowing a reduction on the
operating costs.
 • Information Security Management System
(ISMS)
• ISO/IEC 27001 certification
• Evaluation of the IT compliance level
• Elaboration and organization of the ISMS
• Operational steering of the IT
• Security action plans

+++
• Reporting tools
• Risk mapping
• Management of the repositories
deployment
• Management of the information
control process
 • Information Security Management System
(ISMS)
Context and issues:
An private equity investment fund wishes to have a
governance of its ISMS via a schedule based on the control of
the ISO/IEC 27001 and by which the measures are given by
departments.

Benefits of Advanxis :
• Real-time reportings,
• Quality of risk mapping and financial impacts,
• Follow-up the compliance level with regard to the ISO/IEC
27001.
 • Easy to use
• Quality in Information Restitution
• Follow-up audit action plans
• Risk management in real time
• Risk mapping
• Permanent dynamic audit
• Compliance management
• Control Assessment
• Tri-dimensional rating

+++
GRC Software
Steering your risk
management

www.advanxis-consulting.com