Practice areas
Eight disciplines. One bracket around the problem.
Risk-based plans, controls testing, model validation, and the findings that follow. Each practice is led by the partner whose career is in it. We do not do financial statement audits or attestation engagements.
-
Internal Audit
Risk-based plans, fieldwork, and reporting that pass committee scrutiny. Co-sourced or fully outsourced, partner-led on every engagement.
-
IT Audit
Controls testing across infrastructure, applications, and third parties. Scoped to the examination cycle, written to outlast it.
-
SOX Compliance
Scoping, walkthroughs, and remediation for first-time and seasoned filers. It passes external audit without bloating cycle over cycle.
-
Model Validation
Credit, market, AML, and AI/ML models — independently validated, conformant with SR 11-7, and written for examiners to read.
-
AML & Sanctions
Program reviews, look-backs, and tuning for transaction monitoring systems. Calibrated for the regulator who will read your next exam.
-
Fraud Risk
Assessments, control design, and forensic support when a case requires it. The point is to find the fraud before your examiner does.
-
IPO Readiness
Control environment, governance, and reporting infrastructure ahead of S-1. Built so the first 10-Q is not the discovery moment.