IT Advisory and Assurance Services
Macdonald Page & Co LLC has a team of IT Advisory and Assurance professionals, accountants and industry-specific analysts available to assist our clients. Macdonald Page & Co LLC is independent of all hardware and software vendors; therefore, we are able to provide clients with objective IT assistance. Our IT Advisory and Assurance Services project team's unique combination of experienced management consultants and IT professionals have the required skills to provide excellent outcomes and will be a valuable resource to your organization.
Services
- SSAE 16 Examinations (SSAE16exam.com is a resource for more information on SSAE 16 examinations)
- IT Controls Review
- IT Risk Assessments
- Technology Planning
- System Selection
- Disaster Recovery Planning
- Regulatory Compliance Assistance
- SOC 1, 2 & 3 Reports (Service Organization Control)
IT Advisory and Assurance Services
Michael J. Galeucia, MBA - leads the IT Advisory and Assurance Services at Macdonald Page & Co LLC. Mike assists clients in addressing a broad range of general management, strategic business, and information technology planning issues. In addition, he has extensive experience in managing the complexities of a family owned business, corporate strategy, operational efficiency, business process analysis and redesign, IT strategic planning, organizational development and project development. Durward J. Ferland, Jr., MSB, CISA, CISM, CRISC, CICA - also helps lead the IT Advisory and Assurance Services at Macdonald Page & Co LLC. Durward focuses on delivering IT advisory and assurance services to organizations nationwide. Durward has expertise and knowledge in all areas of IT-related controls, and has extensive knowledge of the Control Objectives for Information and Related Technology (COBIT). Durward has extensive experience perfoming SAS 70 and SSAE 16 examinations. Durward is a Certified Information Systems Auditor (CISA), a Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), and a Certified Information Systems Auditor (CICA). He is also a member of the Information Systems Audit and Control Association (ISACA). Ashley D. Campbell, MST, CISA, provides IT Advisory and Assurance Services from our South Portland office. Ashley has performed Sarbanes-Oxley Section 404 (SOX) audits, with a focus on IT General Controls, for a diverse range of clients in the technology, pharmaceutical/life science, healthcare, space and airborne, retail, utility, consumer products and services industries. She has conducted detailed security and change control process reviews of financial ERPs including Oracle and PeopleSoft; operating systems including Unix, Windows, Mainframe, and AS400; and databases including Oracle Database, DB2, and SQL for SOX compliance and risk management. Prior to joining Macdonald Page & Co LLC, Ashley worked for a national accounting firm where she provided IT assurance services to clients nationwide. Ashley is a Certified Information Systems Auditor (CISA), Andrew E. Jones, provides IT Advisory and Assurance Services from in our South Portland office. Prior to joining Macdonald Page & Co LLC, Andy worked at a multi-billion dollar bank as an IT Regulatory Management & Governance Analyst. Andy has over nine years of experience developing programs to ensure compliance to technology systems, policies, and procedures in accordance with industry guidelines and regulations, federal and state laws, and technology risk policies. Andy has managed numerous SOX compliance audits and facilitated and lead IT General Control walkthroughs. Marilyn L. Welsch, CISA, CRISC, CISM, is a certified QuickBooks Pro Advisor. She has experience and knowledge in the following areas: technology audits, IT general controls reviews, IT technology planning, development of technology policies and disaster recovery plans, network systems administration, help desk support, expense analysis, database support, and Intranet design and support. Marilyn is a Certified Information Systems Auditor (CISA), is Certified in Risk and Information Systems Control (CRISC), and is a Certified Information Security Manager (CISM). Nicholas S. Norton, MPAc, provides IT Advisory and Assurance Services from our South Portland office. As an IT audit staff member, Nick performs a wide variety of diversified IT auditing tasks. He performs inquiries of client personnel regarding internal controls, information technology, and information security. Nick has experience assisting with SSAE 16 examinations, IT general control reviews, and risk assessments. Nick performs technology auditing in all areas of IT-related controls including IT department organization and administration, computer / daily operations, software change management, logical security and physical security. Nick earned his Masters of Professional Accountancy, MPAc, and his Bachelor of Science degree in Business Administration with a concentration in Accounting from Bryant University.
