Energy and Natural resources

Information Risk Management The future for a secure information environment KPMG's Information Risk Management (IRM) team provides solutions that promote the efficient and secure use of your information resources. We have specialists in all aspects of IT risk, control and security management. They are drawn from a wide field of technical and business backgrounds, so we can offer you outstanding IT expertise with a vital awareness of the wider business implications and technology issues. Based on global trends, KPMG IRM's services extend further than pure computer systems auditing. In response to increased risks with modern technology, KPMG has specialists equipped to deal with your risks. We offer proactive advice combined with understanding of the business environment.
	Practice description KPMG Information Risk Management offers a complete portfolio of professional expertise and its advanced services include: SAP R/3 Audit Services The advantages of implementing SAP R/3 software are clear. However, in common with all enterprise wide projects, there are many issues to manage in order to achieve the obvious benefits. KPMG Information Risk Management offers integrated services to clients implementing SAP software. Internet Security Services Have you identified all the potential benefits of doing business on the Internet? What value have you placed on the information stored on your networked systems? How are you going to balance the benefits of accessing the internet against the levels of risks faced? How are you going to reduce the risks and connect to the internet in a secure manner? Benchmarking IT Risks and Controls Do you know how your systems compare to industry standards? Benchmarking gives you the opportunity to compare your business with both good and best practice - it is then up to you to decide just how far you want to go. System Reviews We offer informed and independent advice on the accounting, control, audit and security requirements of both new and existing systems, including pre- and post-implementation reviews. IT Security Reviews An examination and assessment of the security features, standards and procedures covering the operation of all systems and any access control package installed, to identify significant weaknesses and remedies. IT Risk Reviews An IT risk review consists of an evaluation of all risks affecting Information Technology in your organisation. These risks are evaluated together with the control procedures present in your organisation to produce cost effective solutions to address these risks. Disaster Recovery Reviews Reviews of Disaster Recovery Plans are performed by evaluating the threats facing your IT installation, together with the critical IT needs, to ensure that processing is not unduly interrupted should a disaster occur. Data mining & Analysis KPMG makes use of a variety of mainframe and PC-based tools to assist in the audit function and to perform specialist analysis. Year 2000 It is predicted that many computer systems will fail when clocks advance into the next century. Is your business safe from this threat? Take a look at some of the issues which will help you assess your Y2K risk. Business continuity planning Advances in technology and the increasing pace of business highlights the dependency of vital business functions on information systems services. KPMG has developed a contingency planning methodology which provides effective preparation for a calamitous events. KPMG can become an integral part of the team that ensures protection to your business.
	Careers At KPMG we continue to expand our IRM capability. We are recruiting information systems graduates interested in IT and business consulting. We recruit the best people, develop them throughout their careers and reward them appropriately. We are therefore able to compile the best multidisciplinary team for each assignment we take on. Our people are business-like and enthusiastic. Take a look at our IRM training programme Your application form
	Virtual library 2000 AD problem? Alliance with SMCec: Network security and internet security services Electronic Data Interchange (EDI) in South Africa Latest developments in fraud detection For a complete list of material available on our internet site, go to our virtual library.
	Contact us If you require further information, please contact our KPMG Information Risk Management partners Our partners in the Johannesburg practice include the following : Devon Duffield Devon manages a number of the information risk management assignments for KPMG's listed clients. In addition, he specialises in business process risk and control assessment and particulary where Integrated Vendor Solution products such as SAP, BAAN and ORACLE are used. Arvind Hari Arvind has over 10 years experience in the Information Risk Management practice at KPMG. Arvind has extensive experience with various application systems, including EDI/EFT systems, on which he has written several papers. He is involved in several special projects, security reviews and installation reviews, and presents seminars both in-house and externally on computer auditing. Gavin Maile (Managing partner) Gavin is the managing partner of our Information Risk Management practice, where he has over 15 years experience. He is involved in all areas of computer auditing, including projects of a specialised nature. In addition to spending time in one of our USA offices, Gavin has also spent a period in the commercial IT field. Frank Rizzo His past expierence includes managing a computer audit involvement on some of KPMG's listed clients,as well as providing specialist information risk management services in the Information Security and Electronic Commerce area
	In Cape Town Edward Belstead is managing partner.

KPMG is one of South Africa's and the world's most successful business advisory organisations. In South Africa, we have four Information Risk Management (IRM) offices with six partners and over 50 specialist staff serving clients across all major industries.