Case StudyProject Services
IT Review and GDPR Assessment

Context

Following a consolidation of IT resources across the Guernsey public sector, one of its departments wished to conduct a review of its IT systems and services across all unincorporated trading assets. The desired outputs of the review were to identify all systems and services currently utilised across the unincorporated trading assets, all associated risks and any opportunities for IT service improvement.

The objectives of the review was to identify:

  • Trading assets’ strategic direction for IT service delivery;
  • The IT systems that were in place, the underlying technology and the support model;
  • The true costs of running these IT systems, and potential areas to reduce costs and deliver improved service through IT-enabled change;
  • Any opportunities or challenges in the way IT was delivered across the trading assets, including reviewing data protection;
  • Rating the opportunities in terms of attractiveness and achievability.

CBO’s Approach

To support achieving the objectives, CBO conducted a detailed review producing the following deliverables:

  • A context analysis, aligning the IT to the trading assets’ strategy
  • A detailed IT service and system risk review
  • An opportunity analysis
  • A high-level implementation plan
  • A Data Protection/GDPR Assessment

CBO’s approach incorporated a combination of reviewing business plans and interviewing key stakeholders to identify the strategic assumptions about the role of IT in the trading assets. These findings were then applied to a structured framework to build a rounded articulation of the trading assets’ strategic intent for IT.

The focus then moved towards reviewing the IT services and systems, which was supported by detailed workshops on risks and opportunities.

Using the outputs created, CBO produced a comprehensive report which included clear recommendations and a high-level implementation plan for each of the recommendations..

In parallel a CBO Data Protection Health Check ‘rapid review’ was carried out across the trading assets, producing a RAG Report and associated GDPR Risk Register.

CBO’s Impact

The outcome of the CBO IT review gave the trading assets a clear and documented understanding of their baseline IT services, how these were aligned to overall IT strategy and, importantly, their overall IT Maturity Level. The recommendations and implementation plan enabled the trading assets to agree the best approach to deliver on the opportunities and risk mitigation actions identified. This included core activities, timescales, resource requirements and a recommended governance model.

The trading assets adopted the CBO recommendation and implementation plan which addressed a number of best practice gaps in IT service delivery including a dedicated IT operations role supporting the board and the implementation of a ‘portfolio of IT change’. These activities formed the first step towards the trading assets improving their IT service delivery maturity level.

More project services articles

Blog Post
Sharing Quality: How APM helped CBO connect with Apache iX to elevate quality management

Over the past few years, CBO has grown from a 10-person team to 27 professionals across two jurisdictions, expanding our service offering and client base. With growth comes the need for scalability, especially in our quality management systems. Ensuring consistent excellence in delivery is part of our ethos, and it’s essential to the trust our […]

Case Study
Carey Group System Implementation – NavOne

Context Carey Group is a Guernsey-based trust and fiduciary services provider with around 75 employees. They were relying on multiple aging systems for trust management, billing, and accounting—many of which were nearing end-of-support. Data was scattered across platforms, and billing processes lacked efficiency. Recognising the need for a modern, consolidated platform, Carey Group turned to […]

Case Study
Taking Initiative: Preparing for a Regulatory Financial Service Visit

Approach Ahead of an anticipated AML/CFT visit by the GFSC, our client recognised the need to enhance a number of areas of their operations to align with the expected regulatory requirements. To prepare effectively, CBO worked with our client to develop a structured plan to identify gaps and implement targeted improvements ahead of the regulatory […]

Case Study
Driving Risk Culture through Collaborative Project Management

Approach CBO supported a fiduciary services provider in embedding a culture that prioritises proactive risk management, alongside reviewing its risk methodology and applying it consistently across all clients. The project was structured around three key phases: Risk Methodology Review: A detailed assessment of the existing risk framework to identify gaps in its application across different […]

Case Study
New RegTech Solution for Global Bank

Context CBO recently implemented a new Regulatory Tech (RegTech) Software-as-a-Service (SaaS) solution to replace an outdated Transaction Monitoring System for a local bank. This project focused on bolstering the client’s compliance capabilities, specifically in the monitoring of Financial Crime, while simultaneously enhancing operational efficiencies. Approach Our team achieved this by identifying vendors suitable for the […]

Blog Post
Inspiration from the APM Women in Project Management Conference

CBO Consultant Lisa Ayres recently enjoyed a day of inspiring talks, great networking, and insightful shared best practice at the APM Women in Project Management Conference 2024. She shares with us her key takeaways from the day.  The APM Women in Project Management Conference was an excellent event, featuring a variety of speakers, from recent […]

Fancy a chat? Get in touch with CBO today to discuss how we can help