Technology Risk

You rely on information and communication technologies more than ever to conduct business and build a competitive advantage. But you also face a growing list of questions around how best to invest in technology, stay ahead of rapidly shifting privacy and security concerns, and prepare for a failure or service interruption.  

Our multidisciplinary team offers insight on a wide range of key technology concerns from cyber security and privacy to IT project assurance and assurance. We help you identify key risks, implement effective governance and controls, and prioritize your efforts to make sure you get the most from your technology investments.

Solutions for Your Success

Following are some of the ways we can help you address common and potentially costly technology pitfalls and increase the value of your technology investments.

  • IT Strategy and Governance

    Align your IT business operations with strategic objectives. We can help you evaluate IT risks and system performance and strengthen information security management programs and controls.

  • Information Security and Privacy

    Safeguard your information assets and manage the risk of unauthorized disclosure, modification or loss of critical information. We’ll help you implement controls and protect your data across all areas of your business.

  • Technology Controls Assurance

    Manage your exposure to data breaches, information security threats, system changes and dependencies, and business interruptions. We tailor control frameworks to your business and IT risk appetite, providing you enhanced assurance and peace of mind.

  • IT Project Risk Management

    Keep large IT projects on time, on budget, and on scope — ensuring they meet your business and user needs. We help you navigate the complexity of transformations with risk advisory services that help you identify and manage risks within the project lifecycle and ultimately achieve success.

  • Third-Party Reporting

    Ensure your third-party IT service providers deliver thorough independent assurance regarding their IT controls, aligned to regulatory and stakeholder standards. We can provide third-party assurance services in accordance with applicable benchmarks in your industry.

    Insights

    • Confidence

      January 18, 2022

      Case Study: FortisAlberta

      MNP helped this Alberta-based electricity service provider update its risk profile and integrate ESG into its latest strategic planning cycle.

       
    • Progress

      January 10, 2022

      COP26 ushers in new era of ESG reporting

      The creation of global disclosure standards on sustainability is being touted as the biggest change in corporate reporting standards in the last 100 years.

    • Confidence

      November 25, 2021

      Detours and Ditches: COP26 and its impact on the ESG movement

      The outcome of the 26th United Nations Climate Change Conference of the Parties (COP26) might have fallen short of expectations, but it provided some much-needed clarity for businesses, policymakers and investors focused on environmental, social and governance issues (ESG).

    Contact Our Enterprise Risk Team

    Trac Bo CPA, CA, CISA, CRISC, CGEIT, ABCP (inactive)

    Partner, Technology Risk Services Leader

    Trac Bo, CA, CISA, CGEIT, CRISC, ABCP, is the leader of MNP’s Technology Risk Services practice. Trac draws on more than 15 years of assurance and technology risk experience in the financial institution, energy and resources, manufacturing, transportation, health care and government industries.

    With an in-depth understanding of risk management and control frameworks, Trac helps clients leverage technology, implement controls, improve IT governance and protect against security threats and vulnerabilities. Trac’s experience includes IT risk assessments, information security assessments, privacy assessments and compliance reviews (CEO/CFO Certification, Sarbanes-Oxley, PCI-DSS), IT audits, application security controls, system implementation reviews, third-party assurance and disaster recovery planning.

    Prior to joining MNP, Trac was a senior practice leader at a Big Four chartered accountancy firm specializing in Systems and Process Assurance and Controls. He has worked internationally in the United States and the Cayman Islands. A Chartered Accountant (CA), Trac also specializes in and holds the Certified Information Systems Auditor (CISA), Certified in the Governance of Enterprise IT (CGEIT), and Certified in Risk and Information Systems Control (CRISC) designations. He also has a Bachelor of Commerce (Honours) degree and is an Associate Business Continuity Professional (ABCP).