Internal Audit, Risk, Compliance and IT Consulting


Comprehensive consulting for a changing world.

Our Internal Audit Risk, IT Consulting Practice and Compliance services are designated to help enhance the efficiency and effectiveness of internal audit functions and the IT environment. Our team works with organizations to optimize their enterprise risk management programs, internal controls, review third-party relationships, and comply with regulations and governance, and sustainability initiatives.

Internal Audit

Our team can provide direct assistance and lead varied project management engagements in coordination with your Internal Audit Department (as well as serve as the Internal Audit Departments). We are highly skilled at assessing and creating sound structures for incipient Internal Audit Departments.


We have also served as Project Managers for specific projects, working on a daily basis with our clients or merely serving as the Department (as needed) for clients in any type of industry.


  • Agreed-upon procedures
  • Prospective Financial Statements
  • Reports on Compliance
  • Information Technology Review and Compliance.
  • We provide in-depth consulting for clients in the banking industry in matters of Consulting Engagements to clients based at Commercial Credit Division-Asset Based Lending; and Compliance examinations of prospective clients in the Commercial Credit Division-Asset Based Lending.

Risk, Governance, Policies and Procedures

Well-defined Policies and Procedures provide a basis for an organization to analyze and evaluate effectiveness of many complex topics, such as Information- and IT- Security, Internal- and external Audit, IT-Compliance, Risk Management and IT-Governance Management. Our department is equipped with professionals dedicated to deliver effective solutions to best suit your company’s needs while reducing risk and improving security by helping with:

  • Development of Risk Assessments for all operational and financial areas, including Information Security/Cyber Security.
  • Assist in developing and implementing policies and procedures that accomplish alignment of key management process to strategic objectives for Operational, Financial and Information Technology areas.

Sarbanes Oxley

We are also a qualified firm with expertise in the Sarbanes-Oxley Act of 2002 (SOX) compliance testing and project management background to perform compliance testing services (in accordance with SOX Section 404).


Our team has completed assessments and testing at financial institutions over the following business cycles:

  • Entity Level
  • Financial Reporting
  • Information Technology
  • Accounts Payable
  • Commercial Lending
  • Consumer Lending
  • Controllership
  • Deposits
  • Mortgage Lending
  • Mortgage Servicing
  • Payroll


  • Our firm is qualified with vast experience completing engagement in compliance with AICPA Statement on Standards for Attestation Engagement No. 18, also referred as SSAE 18 (AT 801, Reporting on Controls at a Service Organization).
  • We assist in the preliminary stages of developing the controls structure, assessments, and the final audit.

Long Term Projects and Training

Our department has a refined skill set to help our clients complete key long-term projects related to Compliance within the Banking industry. For example, our qualifications and expertise in Compliance – coupled with our accurate analytical mindset – led to the successful evaluation of portfolios from some of the largest financial institutions in island-wide.

Typical functions include:

  • Serving as Project Manager (to ensure reliability and completeness)
  • Financial statement analysis and ratios calculation
  • Assessment of client portfolio to meet documentation requirements and other key criteria.
  • Trendspotting and correlations summaries from financial and non-financial data to assess its compliance.
  • Development of manuals and worksheets to standardize processes and provide training.

Information Technology

  • Our team is uniquely equipped with the following certifications: CPA, CISA, CRISC and CISSP
  • Risk assessments over the entire IT function
  • Design, implementation, and management of controls and procedures over cybersecurity for your Organization.
  • Comprehensive services of business risk and technical knowledge to implement appropriate IT controls.

Team Certifications

Our team is composed of highly qualified professionals with the following certifications:

  • CPA
  • CIA
  • CISA

We provide in-depth consulting to a variety of clients (across multiple industries) in Puerto Rico, Panama, Aruba, and Curacao. We can also serve clients in Florida, New York, Dominican Republic, and all other Caribbean Islands.

Contact Us

Explore more at FPV&G

Specialized Industries

Our firm has worked with partners across many industries and of all shapes and sizes. From small private companies to government agencies, to massive healthcare and consumer companies, to nonprofit and everything in between. See our list of industry specialties to learn more.

Learn More

Meet Our Team

Meet our firm’s leadership and the amazing talents that make our firm one of the most prominent accounting and consulting firms in Puerto Rico. Our highly qualified partners holds over a century of combined professional experience, which firmly supports our proven record of success.

Learn More

Explore Careers With Us

Looking to further your career at a place of excellent reputation and with an amazing culture? Join our team of top-notch professionals in the field of accounting, audit, tax, management consulting and more, and learn how our multidisciplinary approach makes us such a strong industry leader.

Learn More