Datasouth

ICT Risk Management - Aligning theory and the practical

With critical emphasis on risk management and increasing compliance and governance requirements across all organisations (public, private and government), it is essential that appropriate benchmark measurements are established and that those responsible have access to the necessary tools and knowledge. When managing information and communication technology (ICT) risk the challenges are particularly difficult to assess accurately. The complex challenge is aligning theoretical and perceived risks against real world practical issues at the core infrastructure level.

Solving this fundamental issue will deliver significant benefits, not simply because the compliance landscape demands it — but because good businesses are characterised by good practices. Effective risk management minimises negative impact and allows ICT managers to balance operational and the economic costs of protective measures in establishing quality decision making.

The Datasouth Consulting Approach

Since 1993 Datasouth has built its core competencies around understanding the complexities of infrastructure, software and business intelligence in meeting the challenges of ensuring ICT demonstrates measurable and defined outcomes. Datasouth’s strength is derived from a solid track record of understanding technology from the consulting and design phase to real world ‘hands on’ implementation. This knowledge and experience enables Datasouth to provide both the definitions and the practical guidance necessary for assessing and mitigating risks identified within ICT and developing appropriate risk management planning.

Of course, nobody knows an organisation better than the people who run it. However, specialist assistance may provide the necessary resources and catalyst to achieve strategic goals earlier and more cost effectively. Datasouth recognises that each organisation is unique and understanding of specific requirements combined with sound risk management principles is crucial. As such, each engagement we undertake includes strong client collaboration to ensure a purpose-fit outcome.

What Datasouth Consulting Delivers

Reported in BRW Magazine on August 14th, 2008:

“Accounting firms are again providing information technology services after spinning them off in 2001. But most lack the technical nous to delve into a client’s IT infrastructure server by server”.

In comparison, Datasouth’s practical knowledge and strategic partnerships with leading world vendors such as Hewlett Packard, Cisco, Citrix, Symantec and Microsoft, places it in a uniquely qualified position to assess the complexities of ICT engagements. The validation of this experience is that Datasouth won the “Core Infrastructure Solution of the Year” in the 2008 New Zealand Microsoft Partner Awards.

Whether developing a technology risk framework, or performing an independent assessment, Datasouth is capable of providing a range of tailored risk management services based on experience with the AS/NZS:4360 and HB:221 standards.

Our clients are ensured comprehensive, expert assistance with:

• Defining risk appetite
• Formulating criteria for assessing risks
• Identifying the sources of risks and key risk indicators
• Developing the essential strategies to manage risks
• Design, configuration and documentation of risk models
• Prioritising, implementing and maintaining the appropriate risk reducing measures

As members of both the New Zealand Society for Risk Management and the Risk Management Institute of Australasia, Datasouth has an experienced and practical team of professionals to provide:

• License auditing, Licence compliance verification, Licence cost minimisation
• Technology asset management, valuation and risk assessment
• Outsourcing and service level agreement risk management
• ICT security auditing and system security reinforcement
• Business continuity management and disaster recovery planning