This site uses cookies to provide you with a more responsive and personalised service. By using this site you agree to our use of cookies. Please read our PRIVACY POLICY for more information on the cookies we use and how to delete or block them.
  • IT Security and Advisory Services

IT Security and Advisory Services

Information technology is a fast growing area which leads to a lot of business opportunities; however, at the same, it could also affect the sustainability of an organisation in terms of technology related threats such as cyber-attack, development of disruptive technology, delayed digital transformation, etc. Corporate board may need to heighten its level of scrutiny and closely monitor how technological changes or development could affect their organisations. Some questions for the board to consider:

  • Does the organisation use a security framework?
  • What are the top five IT risks to the organisation?
  • How is the security governance managed in the organisation?
  • Has the organisation been attacked by cyber threats or other security related incidents?

BDO Risk Advisory Services (RAS) Team is experienced and qualified in providing IT security and cyber security services. Our IT professionals will help you to leverage technology to achieve a competitive advantage and to make IT more efficient to manage the risks associated with IT operations.

Our IT professionals may provide value-added recommendations for enhancing your capability in your information security management system (ISMS) and protecting your applications and infrastructure against cyber threats, possible data leaks, thefts, or disasters. Our IT Advisory Services include:

  • IT governance and security assessment and benchmarking (eg COBIT, ITIL implementation)
  • Standard certification and compliance support (eg ISAE 3402 (SOC report), ISO 27001)
  • Data privacy and protection (eg China Cybersecurity Law, GDPR)
  • ERP and CRM system and control assisting support
  • Cyber security
    • Cyber security framework assistance and compliance (eg vulnerability scanning, penetration testing, comply with HKMA and SFC cyber security guidelines, etc)
    • Cyber insurance support
    • Cyber incident crisis readiness advisory
    • Third party risk management
    • Cyber risk awareness training
  • Fintech Advisory
    • Blockchain
    • Crypto-currency and exchange platform
    • Stored-value facilities 

Contact us and talk to our consultant to give you an idea of what the board concerns most on IT security and cyber risks. 


Related brochures:

Digital Services brochure

IT advisory brochure

Managed services via Cyber Security Operations Center (CSOC)

Related publications:

Technology Updates - October 2020 Issue

Technology Updates - August 2020 Issue

Technology Updates - June 2020 Issue

網絡威脅代價沉重 安全管理至為重要 (Chinese only)