Global

IT Advisory Services 

Amid an evolving regulatory environment and increased oversight pressures, organizations face ongoing challenges to manage and comply with ever-mounting regulations that are coming their way. At the same time, organizations are focused on managing new and persistent risks to their business, while balancing revenue growth and expense saving business priorities.

David DiCristofaro

David DiCristofaro

Head of Global ITA Risk Consulting

+1 212 872 3382

KPMG 2013 IT Internal Audit Survey

2013 IT Internal Audit Survey
With risk firmly at the top of the global executive agenda, we are pleased to share with you the findings from two major global pieces of research by KPMG

Publish and be damned - What does your online corporate profile reveal?

Feature image
According to the KPMG Cyber Vulnerability report 2012, ‘Publish and Be Damned’ more than three quarters of the Forbes 2000 companies leak potentially dangerous data.

In the face of these challenges, managing IT risk and compliance has become even more critical, as IT failures can lead to reputational damage, customer and market valuation loss, and an increase in privacy issues and high-profile legal exposure. In this environment, enhancing IT controls is crucial to help ensure businesses are managed and controlled appropriately, and functioning reliably.


The right technology, implemented properly, appropriately managed and monitored, can lead to significant gains in growth and efficiency. It is essential to get sound business advice to help ensure technology risks are managed.

How our member firms can help

We work with clients to analyze business technology issues within their businesses.  We assist clients with the following areas:


  • developing an appropriate IT strategy – we work with clients to develop a clear IT strategy that fully supports their business objectives
  • regulatory and compliance – we are well placed to assist organizations with regulatory and compliance needs. We have a great deal of experience in identifying and controlling financial and operational risks embedded in business systems
  • IT risk management and controls – we help clients optimize their risk management and controls architecture, specific to IT
  • sourcing – we offer guidance on appropriate strategies for outsourcing or offshoring IT services, and help to ensure that effective controls are implemented
  • cost optimization – we work with clients to help identify the most effective ways to take costs out of a business
  • logistics and supply chain issues – we examine various aspects of processes and technology, and make recommendations for helping to optimize efficiency. This is one of the areas where IT can have the greatest impact

At KPMG we focus on the business impact of technology rather than systems implementation, and we are not tied to any hardware or software suppliers. As a result, our advice is independent and geared to the specific needs of each client.

Global capabilities

Keeping pace with technology and taking advantage of the tremendous opportunities offered by technological innovation is paramount to us, but we are also aware of the risks involved and the responsibility at the Board level to control these risks.


With the global scope of many organizations, we are aware of the need to develop innovative solutions that are repeatable and easily distributable. As a global organization ourselves, we are able to provide global guidance and local support where necessary.


We offer:


  • a team of over 6000 experienced professionals, equipped with strong business skills, as well as in-depth sector knowledge and specialist IT skills
  • a consistent, integrated global platform; and
  • the combined resources of one of the world's leading business advisory networks.

KPMG's IT Advisory team is a trusted advisor to the Boards of some of the world's largest multinational organizations. We operate in the developed markets and in the key emerging economies of Central and Eastern Europe, Central and South America and Asia-Pacific.


In our work with international clients, we help organizations assess, manage and optimize information technology risk across a range of areas, including:


  • Information Protection and Business Resilience
  • IT Internal Audit
  • IT Attestation
  • IT Governance, Risk and Compliance (GRC)/and Controls Integration
  • Information Governance Services