Governance & Assurance

Independent expertise, providing advice you can trust.

Governance and Assurance


Delivering best in class, structures, processes and controls, we enable our clients to effectively lead on their strategy whilst we ensure they remain compliant and are operating in accordance with their risk appetite.


  • IT's ability to support Corporate Governance or Enterprise Risk Management requirements isn't self-evident.
  • Your efforts to comply with regulatory matters have uncovered operational issues in IT and information security.
  • You need to achieve certification or accreditation.
  • You are worried about failing an audit.
  • The level of risk IT poses to your business is unclear or unacceptable.
  • You have suffered a breach in statutory registration or reporting obligations.
  • You are concerned about the confidentiality, integrity or availability of information within your business.
  • You have experienced a major incident resulting in data loss or disruption.


Establishing accountability and oversight.
Governance Risk and Compliance frameworks.
Regulatory landscape review.
Selecting and applying appropriate IT practices, standards and frameworks.
Maturity assessments and benchmarking.
Policy development, review and validation.
Establishing Internal Audit, Risk, Information Security capabilities.
Establishing, assuring and recovering Information Security Management Systems.
Third party assurance.
Internal audit planning, streamlining and management
Pre-audit health check.
Hostile audit emergency response.
Certification or accreditation planning and management.
Compliance remediation and improvement planning.
IT due-diligence, acquisition and post-merger integration support.


View our Projects

Ziran : the agile IT governance and management consultancy.

Whether you know what you want, or would like simply like to have a chat, we'd love to hear from you!