Information Technology Change Management Breaches
Client: UK Regulated Bank
Scope: The Bank had various legacy IT systems and several new systems going live including an Accounting system. The Bank wanted assurance around the internal controls and IT change management (ITCM) processes.
Engagement: Ashlynwood was engaged to undertake a detailed review and walk-through of the ITCM policy and procedure documentation, including consideration of the design and operational effectiveness of the ITCM Policy. Furthermore, Ashlynwood reviewed the overall ITCM governance undertaken by the Bank’s IT and Executive Operational Risk Committees, offering recommendations for improvement as relevant.
Outcome: Ashlynwood identified some breaches of the ITCM Policy which the Bank enacted to resolve immediately and our report was submitted to the Board of the Bank, with various recommendations to strengthen the ITCM processes.