Risk assurance services


Our risk assurance team provides a range of services tailored to client circumstances to help build a resilient and operationally sound business.

PwC provides expertise in five main areas:

Internal audit

The PwC Internal Audit is tailored to bring you a flexible approach. We bring you deep capabilities which reach beyond the traditional focus on internal controls to deliver an innovative approach that is enabled and anchored by advanced risk profiling techniques. We understand how difficult it can be for organizations to meet increased expectations with their existing skills and resources and relish the challenge of supporting you to address change and increasing complexity.

Cybersecurity, privacy and cyber risk

Protecting intellectual property, sensitive customer information, and other business-critical information requires a comprehensive security strategy that closely aligns with business objectives without being burdensome.

While cyber security risks have dramatically evolved, the approach businesses use has not kept pace. The traditional information security model – one that is technology focused, compliance-based, perimeter oriented, and aimed at securing the back office – does not address the realities of today.  Cybersecurity is about people, information, systems, processes, culture and physical surroundings. PwC will give you that confidence by helping you manage risks, while staying connected. We’ll help you to shape a broader strategic response to cyber risk by helping you to understand current capability and putting in place a focused plan to target cyber-security investment in the right places.

Our services include:

  • Information Security Strategy & Governance
    • Information Security Management
    • Security metrics and Management reporting design
  • Cyber security and resilience testing
    • IT Cyber Risk: We perform IT security assessments covering different technical and operational domains and provide advice on the areas of improvements.
  • Information/ Cybersecurity maturity benchmarking

Controls assurance

Effective Controls have never been higher on the corporate agenda. In order to protect and enhance shareholder wealth, companies must focus on strategically controlling the drivers of value in their business. These include customers, people and operations.

Enterprise information systems risk and controls

We assist clients to optimally leverage ERP technologies, and their investments in Core Business Systems solutions such as SAP and Oracle, to manage risks associated with business processes, security and compliance. This is through such services as IT Audit, Quality Assurance over systems implementations, post implementation review etc.

Performance governance, risk and compliance

We help companies identify, assess the potential impact of, and manage emerging and existing strategic risks through a sustainable and repeatable process that aligns with the organization’s value drivers, encompasses stakeholder perspectives, fits the culture of the organization, and applies existing risk management capabilities. We develop customized ERM frameworks based on a client’s unique risk profile and needs, and we help the client efficiently execute its risk management programme to meet its goals for ERM.

Contact us

Benjamin Mkwizu

Benjamin Mkwizu

Associate Director | Risk Assurance Services, PwC Tanzania

Tel: +255 (0) 22 219 2000

Follow us