PASS ICS Software – Internal Control System

Structured and central repository for important information

Managing the internal control system (ICS) correctly

ICS software specially designed for the needs of banks and insurance companies

Adapting the Internal Control System (ICS) and keeping track of it is becoming increasingly difficult for executives and risk managers due to supervisory regulations (such as BAIT/VAIT/MaRisk) and increasing complexity within banks and insurance companies, e.g. due to the growing number of service providers.

The PASS GRC Suite has an industry-specific ICS software and helps financial institutions and insurance companies to implement, monitor and comply with the EBA (European Banking Authority) guidelines on outsourcing as well as for the management of ICT and security risks.

Ensure ICS management

Is it also the case in your company that hectic activities begin when the auditors or BaFin/Federal Bank have registered for a special audit? Audit and IT management quickly try to compile the processing status of open items from the last audit, gather information about review meetings with external service providers, and finalize the latest policies and work instructions. The challenge is often that each department keeps the information relevant for audits, either in "their own" systems or Excel lists. This is not only inefficient, non-transparent, time-consuming and error-prone because no one has an overview of all the information, but also often leads to the audit result being worse than it should be, e.g., when all the information could have been presented to the auditors in full and on time.

With PASS' ICS software, information can be stored in a structured and centralized way and is available at any time.

Legal basis for banks/insurance companies in Germany

Use of ICS software in outsourcing management and contract controlling

Linking SLA and KPIs with live data

By linking relevant contract content such as service level agreements (SLAs), operating level agreements (OLAs) or key performance indicators (KPIs) with live data from your production operations, you have an up-to-date view of your service providers' performance at all times. This enables you to manage them better and in a more targeted manner, and to prove this directly and at any time.

Outsourcing Management / Contract Management SLA

With the integration of service provider contracts into the PASS ICS software, you comply with the requirement to maintain an outsourcing register.

You can also learn more about outsourcing management with software from PASS in our Finance IT Blog.

Advantages of the ICS software

  • Management of the internal control system (ICS) in one application
  • Transparency of processing status at all times
  • Collaborative work between Compliance, IT, Orga and external auditors
  • External auditors use the application to document their processes for auditing purposes
  • Integration of live data from production, SLA monitoring and other KPIs possible
  • Additional modules for outsourcing management from requirements of MaRisk/BAIT and MaGO/VAIT are planned

Highlights of the ICS Software

Web application

Web application

Web-based application with modern user interface enables company-wide access and collaboration with e.g. auditors or auditors.

Authorization management

Authorization management

Flexible and fine-grained role and rights management for internal as well as external users via LDAP connection.

Generic system

Generic system

Referencing to multiple audit standards & regulatory requirements (including ISO 27001 BAIT/VAIT, MaRisk, MaGO, BSI, ISO 9001). Extensible with individual rules.

Reporting

Reporting

Extensive reporting and report functions, as well as e-mail dispatch. Ad-hoc reporting, e.g. for the processing of monitors or findings.

Auditability

Auditability

All adjustments, entries, status changes are stored in the solution and can be tracked at any time.

Task Management

Task Management

Assist in timely completion of audit-related tasks from management and control systems.

Functions of the ICS software

User centered interface

User centered interface

The PASS ICS software offers the user a uniform interface and user guidance across all modules, which can be customized individually. For example, users can save their own column settings and filters for each mask and call them up again at any time.

Notification and reminder management

Notification and reminder management

Immediately after logging into the ICS software, each user is shown in their personal dashboard which tasks are pending or overdue.

Workflow

Workflow

Status values can be defined independently for all modules. It can be defined which status values have relevance for the notification and reminder management of the ICS software.

Authorization system

Authorization system

The configurable roles/rights system enables fine-grained definition of function-related rights for internal as well as external users in the ICS software. The visibility of risks, checks and measures can be reliably restricted for each user by assigning freely definable scopes.

Flexible adaptation to company-specific requirements

Flexible adaptation to company-specific requirements

To customize the risk module, numerous options, intervals, lead times for displaying due processing steps in the dashboard, etc. can be adapted to the specific company.

Report generator

Report generator

An optionally integrable report generator enables the creation of standard reports and their provision for call-up by defined user groups.

Screenshots from the PASS ICS software

Ole Barkmann

PASS Consulting Group

+49 60 21 . 38 81 75 24

s