Internal Audit for a Financial Services Company

SERVICE
Governance, Risk and Compliance
INDUSTRY
Financial Services
YEAR
2025

Overview

We carried out an independent internal audit for a financial services company seeking to improve visibility of its security posture. The engagement provided a clear understanding of existing risks, the maturity of current controls and the steps needed to strengthen governance across the organisation.

Challenge

  • The client needed clarity on their security posture across the organisation
  • Existing policies were inconsistent and lacked alignment with best practice
  • Senior leadership required a clear view of priorities and remediation needs

Approach

  • Engaged with key stakeholders to understand current processes and risks
  • Completed a full security review and detailed policy gap analysis
  • Benchmarked controls against recognised industry standards

Outcome

1

Delivered a board ready report outlining findings, priorities, improvement timelines

2

Provided targeted recommendations to strengthen governance and reduce risk

3

Enabled the client to plan structured improvements with confidence

Work Process

Step 01
Connect
icon
Step 02
Discovery
icon
Step 03
Implement
icon
Step 04
Support
icon

Real Client Results

icon
icon
Financial Services

Penetration Testing Oversight

We provided governance and coordination for penetration testing activities to ensure structured delivery, clear reporting and meaningful remediation outcomes for a large SAP operations business.

Learn More
icon
icon
Financial Services

Comprehensive Security Reviews

We carried out full spectrum security reviews for clients seeking a clear understanding of their current security posture and practical steps to improve resilience. The assessments covered governance, technology and operational controls.

Learn More
icon
icon
Financial Services

Hedge Fund Spin-out MSP Selection

We supported a newly formed hedge fund in selecting the right managed service provider by conducting an objective assessment of multiple proposals. This ensured a reliable long term partner aligned to the firm’s operational needs.

Learn More
icon
icon
icon

Ninth Seat

“Onion Security worked alongside our existing IT supplier to provide an independent and constructive view of our security position. Their assessment helped us understand where we could strengthen our controls and prioritise future improvements. The guidance they provided was clear, practical and collaborative throughout. We now have a well-defined roadmap that supports our ongoing security strategy, and we are keen to work with them again to ensure we stay ahead of the ever-changing security threats."

Tim Gowing

Partner and Board Director
iconiconiconiconicon
icon

FryerMiles

"Working with Onion Security has given us greater clarity and structure around how we protect candidate and client information. They made a real effort to understand the flow of data within our recruitment operations and offered guidance that suited the way our teams work. Their steady, knowledgeable support has strengthened our overall approach to security, and we value their ongoing role in helping us maintain strong and compliant practices."

Leo Miles

Founder and Director
iconiconiconiconicon
icon

SportsFi

"Onion Security have been instrumental in guiding us through our ISO 27001 and SOC 2 journey. Their expertise, combined with effective tooling solutions, has helped us build clear and manageable compliance processes. We value the reassurance and support they provide at each stage, and they continue to play a key role in our ongoing security and compliance work."

Justin King

Founder & Co CEO
iconiconiconiconicon
icon

Cunningham Eves Solicitors

"Onion Security supported our firm with clear, practical advice focused on safeguarding client confidentiality and meeting the expectations of our regulators. They quickly understood the nature of our legal work and provided guidance that fitted seamlessly with our existing processes. Their professionalism and measured approach have given us greater confidence in our security arrangements, and they remain a trusted resource for ongoing security and compliance matters."

Christine Eves

Senior Partner
iconiconiconiconicon
icon

Construction Dynamics Solutions

“Onion Security invested the time to understand our firm, our workflows and the expectations of our clients. This allowed them to tailor their support precisely to our needs and provide guidance that was both practical and proportionate. Their work has helped us strengthen our security posture and gain clearer oversight of our compliance obligations. We value their measured, professional approach and are pleased to have them as our trusted security and compliance partner.”

Sam Mattar

Founding Partner
iconiconiconiconicon
icon

Codertonic

"Onion Security provides expert support across our security and compliance needs, including thorough penetration testing that offers valuable insight and assurance. Their advice is clear, reliable and aligned with the way we work, which strengthens our approach without disrupting our development process. They have become a trusted partner for security matters, and I would not hesitate to recommend them."

Chris Hoyes

CEO/CTO and Co-founder
iconiconiconiconicon

Cyber Security Solutions

Delivering a robust cyber security posture that withstands any threat

Schedule a Call
Schedule a Call
iconicon

Your Trusted Partner

Main pages
Services
Case Studies
About
Insights
Contact
ContactS
Email UsCall Us
Location
10 Mandeville Courtyard
142 Battersea Park Rd
London, SW11 4NB
© Website Design | Onion Security Ltd | Company Number: 15790877
Privacy PolicyTerms of Use
Onion Security