– Development of customized audit programs for different types of businesses

– Analysis of the organizational and staff structure, internal regulatory documents and budgets of the security department

– Revision of core security expenses

– Interviews with security employees, key managers, and stakeholders

– Risk analysis in business processes according to an agreed list

– Analysis of existing controls in economic, physical, and information securities including personnel security, due diligence, support of contractual and tender work, operational process controls, anti–corruption activities, security of facilities and anti-terrorism security, information protection, compliance of processing and protection of personal data and commercially sensitive information, etc.

– Recommendations upon the audit completion on:

• Focusing Security Council goals on achieving strategic business goals
• Adjusting the objectives of Security to the strategic goals of the business
• Изменение организационной структуры СБ в соответствии со спецификой бизнеса и выполняемыми бизнес-процессами
• Improving the organizational structure of the Department considering the specifics of the business and business processes
• List of processes and controls appropriate for implementation
• Proposals for the structure and regulation the Department
• Description of opportunities to improve the quality and productivity of security processes
• Recommendations on KPIs including those obligatory to meet