IT audit and consulting

It is hard to imagine a modern organization using no information technologies. IT solutions bring not only comfort and competitive advantages, but also business risks associated with regulatory requirements, IT services non-transparency, industrial espionage and business processes interruptions.


IT Audit and Consulting Mazars Team consists of experts having relevant skills and practical experience in the following areas:

  • IT risk management
  • Information protection
  • Assessment of IT infrastructure compliance with domestic and international standards

Contemporary topics:

  • Growth of global viruses activity and cyber crimes
  • Personal data: increased penalties and broadened powers of regulatory authorities
  • Information volume growth and boundaries blurring (between corporate and personal, cloud-based and in-house infrastructure) 

IT audit and consulting

Regulatory authorities toughen and enlarge their requirements, and their powers are getting wider. In today’s contemporary circumstances, the companies should regularly review their readiness for checks. To ensure compliance with regulatory authorities’ requirements, our IT Audit team will help you in conducting the following procedures:

  • IT general controls assessment
  • IT application controls assessment
  • IT systems integration and data migration assessment
  • Assessment of compliance with service organizations standards (SSAE18 / SSAE16, ISAE 3402)
  • IT Due Diligence
  • Risk-based assessment of applications and informational systems
  • IT project support from specifications assessment to system implementation and post-implementation review

Personal data protection

Recently, personal data protection has become one of the hottest topics both in the European Union and Russia. New EU regulations (GDPR) undoubtedly will affect Russian companies connected with European Union residents in some way.

Our IT Audit team and lawyers will assist you to understand the cobweb of the applied laws regulating personal data protection.

  • Federal law No. 152- FZ of 27.07.2006 (in redaction of 29.07.2017) “On personal data”
  • EU General Data Protection Regulation (GDPR)

Cyber security

In our rapid world, everybody may become a cyber-attack target. Cyber threats are discussed today by the expert community, at international events and in daily news.

In order to confront the increasing threat, one should build a protection system based on risks assessment, and organize regular events monitoring and be ready to respond promptly to attack attempts.

Mazars experts will help to assess relevant risks and create or strengthen protection against external and internal threats. We offer you a wide range of services including:

  • Assessment of cyber resistance and business continuity procedures maturity
  • Information and personal data protection
  • Security audit for compliance with international and Russian standards
  • Assessment of ISO27001 and PCI-DSS certification readiness
  • Third-party IT audit
  • IT architecture security assessment

* mandatory fields


I agree with the processing of my personal data by JSC Mazars (registered office: floor 2, office 3, 5, bld. 19, Nizhny Susalny pereulok, 105064, Moscow), “Mazars Audit” LLC (registered office: floor 2, office 12, 5, bld. 19, Nizhny Susalny pereulok, 105064, Moscow), hereinafter together referred to as “Mazars Russia”, when I:
(1) Visit Mazars Russia website and use its functionality;
(2) Tick “I Agree” box when completing web forms of Mazars Russia;
By providing my consent, I authorize Mazars Russia to process my personal data indicated in the respective web forms of Mazars Russia as well as the data obtained during my website visits and use of its functionality.
Mazars Russia may process my personal data to achieve one or several purposes as follows:
(1) dealing with my requests (proposals, feedback, claims, acknowledgments) including transfer of my request to member firms of Mazars to which it may relate and providing informational support;
(2) building up a database of subscribers to newsletters sent out by Mazars Russia and other member firms of Mazars, and updates on events organized by Mazars Russia and/or other member firms of Mazars as well as conducting surveys by Mazars Russia and Mazars;
(3) providing service proposals by Mazars Russia and other member firms of Mazars.
I agree to processing of my personal data using both automated and non-automated means, namely to obtaining my personal data, as described above, recording, alignment, accumulation, storage, adaptation (updating, alteration), retrieval, use, transfer (transmission, making available), pseudonymization, restriction, erasure or destruction of my personal data.
Mazars Russia may transfer my personal data solely to the member firms of Mazars, which may include cross-border transfer of my personal data to countries that do not provide adequate protection for personal data subjects’ rights to their personal data.
My personal data with respect to which this consent is granted may include:
(1) Full name;
(2) Name of my employer;
(3) My job position;
(4) Contact email;
(5) Contact phone number
(6) Other business contact details, as I may wish to provide to Mazars Russia.

This Consent is valid as of its provision and continues until its withdrawal**.

**You may recall this Consent in accordance with Article 9 of Federal Law No. 152-FZ “On Personal Data” of 27.07.2006 by sending a written request to Mazars Russia.