• Personal Data Privacy
• Certifications
• Internet Solutions
• Information Security
• Information Systems Audits
• Risk Advisory
• Trainings

• Checklists
• CRSA (Control&Risk Self Assessment)
• RCM (Risk&Control Matrix)
• CSA (Control Self Assessment)

• Objectives
• Add your CV to database
• DCN Partners

Control&Risk Self Assessment (CRSA) is an empowering method/process by which IT management and IT staff can together identify and evaluate Information Systems related risks and controls under the guidance of a facilitator from DOBIS company. In the CRSA process, a facilitator visiting a team, department or business units tries to:

• Identify and prioritise their business objectives.

• Assess and manage high risk areas of business processes.

• Self-evaluate the adequacy of controls.

• Develop risk treatment action plans.

• Ensure that the identification, recognition and evaluation of business objectives and risks are consistent across all levels of the organisation.

Through the evaluation of the risks and controls facilitator assesses an impact on the achievement of the goals and objectives of business areas, and indicates ways of mitigation of risks and controls implementation. Control Self Assessment process can be treated as an internal IT review method, which is more efficient than traditional audit and gives similar end results. If you would like to learn more about Control & Risk Self Assessment or conducting a CRSA please drop us an email or give us a call.

back