Governance, Risk, & Compliance Practice

GLI will assess your IT operational processes against best practice standards such as ISO 20000 Technology Service Management to drive improvement and cost reduction.

GLI provides IT security audit services and compares audits of your information security processes against recognized leading standards for best practice to meet security requirements. A well-designed IT security audit program aligned with your company’s business objectives can help drive an effective and efficient organization while protecting the confidentiality, integrity and availability of assets and information.

GLI provides experienced internal auditors to supplement existing Internal Audit Departments, providing ERM and Internal Control reviews.

GLI can assist with reporting requirements for the completion of a Self-Assessment Questionnaire or an onsite audit performed against the PCI Standard by a Qualified Security Assessor (QSA).

GLI performs security analysis of the source code using automated tools to identify vulnerabilities and security weaknesses. We perform automated scanning of application source code using commercial static secure analysis tools, combined with manual analysis is completed to identify data entry points, perform data flow analysis, trace user-controllable data from entry points, and search the code base for known gaps and software vulnerabilities.

Whether you wish to pursue ISO/IEC 27001 certification, or to perform a compliance audit, GLI auditors will provide you with the service you need. GLI has ISO/IEC 27001 Lead Auditors accredited to provide ISO27001:2022 certification audits.