IT Compliance Review
Disaster Recovery & Business Continuity Planning
IT Governance
IT Risk Assessment

Scope of Services

  • SOX 404 Compliance Audits
  • SOX Readiness Assessments
  • SOC Reviews
  • IT Risk Assessments
  • IT Governance & Management Reviews
  • Strategic Technology Planning
  • Technical Staff Reviews
  • Application Controls Reviews
  • Disaster Recovery Planning
  • Business Continuity Planning

Industry Experience

  • Manufacturing
  • Financial
  • Healthcare
  • Construction
  • Energy
  • Professional Services
  • Non-Profit

Castman Group provides internal IT auditing and risk services to companies of all sizes, public and private. Acting as the client's internal IT auditors we perform portions of the SOX compliance audits, including application control testing, and work in conjunction with your external auditing team.  It is our primary goal to help create and assist in the implementation of effective internal control processes which will safeguard company assets. We understand the limits on IT resources which companies face in today’s environment and we strive to improve internal controls in order to help reduce the overall compliance costs and streamline the internal audit process. We partner with regional accounting and technology firms to promote the blending of technology with financial management disciplines.

Comprehensive Internal IT Audit Services

"If management is about running the business, governance is about seeing that it is run properly." - R Tricker

Commitment to Governance

Castman Group ITGC Audit Activities
  • Review Current State of Controls.
  • Standardize and Map Controls to Defined Framework.
  • Assist with Remediation and Control Gaps.
  • Assist with Implementing Best Practices.
  • ITGC Reporting
      - Control Gap Analysis
      - Observations/Recommendations
      - Process Flow Charting

Safeguard Assets

With technology playing a major role in an organization's strategic business planning it is critical to assess the vulnerabilities and risks of the technology implemented as it relates to critical business processes. An organizations executive team, board of directors and audit committee are looking to IT Management for governance leadership; and the on-going evaluation of IT risks. The controls put in place to mitigate risk must be understood, effective and monitored regularly from the top down. Castman Group can assist IT Management with the implementation of best practices in IT governance and can recommend the checks and balances necessary for the key controls in place.