How is an ICT audit different from a managed services review?

A managed services review is conducted by your IT provider, it tells you what they think of their own work. An ICT audit is independent. We have no relationship with your current vendor and no stake in the outcome. That independence is the point: you get an honest assessment of whether your technology is fit for purpose, whether you're getting value from your current providers, and what the risks actually are. If everything's fine, we'll tell you that too.

Do you specialise in any particular industries?

We have deep experience in facilities management (including government FM contracts), healthcare, and multi-site organisations. These sectors have specific characteristics, high operational technology exposure, complex regulatory requirements, distributed sites with inconsistent standards, that require more than a generic IT audit approach. We understand the operational context, not just the technology.

What does the audit deliverable look like?

You receive a written report with three components: an executive summary that gives leadership a clear, jargon-free view of findings and risk; a detailed findings register with each issue rated by severity and with specific remediation recommendations; and a prioritised action plan that sequences what to fix first and what can wait. We present findings in person, so decision-makers understand the context, not just the list.

Consulting · ICT Audits · FM & Healthcare

An honest assessment of where your technology actually stands.

An ICT audit gives you a clear, independent picture of your technology environment, what's working, what's a risk, and what's costing more than it should. We specialise in complex, multi-site environments including facilities management and healthcare.

Book a Discovery Call What's included

Independent audit, no conflicts

The kind of audit that tells you
what you actually need to know.

An audit by your own IT team, or by your current MSP, has a conflict of interest built in. We come in with no prior relationship, no ongoing commercial stake, and no reason to shade findings. You get the truth. And a clear plan for what to do with it.

Back to Consulting →

ICT Audits

Every layer reviewed, every finding clearly prioritised.

We scope each audit to the areas that matter most for your organisation, whether that's a full estate review, a specific infrastructure layer, a vendor assessment, or a compliance-focused audit. No two audits are the same, because no two environments are.

What an ICT audit can cover:

Infrastructure audit: Servers, network, storage, end-of-life and end-of-support assessment
Application and licensing audit: What you're running, what you're paying, what's redundant
Security posture review: Control coverage, vulnerability exposure and access management
Vendor performance assessment: Are your current providers delivering what they're contracted for?
BC/DR review: Business continuity and disaster recovery capability assessment
Data governance: Data management and retention compliance review
OT audit: Operational technology assessment for facilities management environments
Multi-site standardisation assessment: Consistency of controls across locations

Case Study

Sunshine Coast University Hospital

Independent ICT audit for one of Queensland's largest public health facilities, delivered in partnership with Downer.

Live clinical environment · Downer partnership

Read the case study

FM and healthcare specialists

Facilities management and healthcare organisations have technology challenges that generic IT auditors don't fully understand: operational technology, complex regulatory environments, multi-site inconsistency, and the tension between uptime and security. We've audited these environments before. We know where to look.

An ICT audit often surfaces strategic questions about technology direction. Our IT Strategy service builds the roadmap that addresses what the audit uncovers.

Sectors we specialise in

We know the sectors where ICT complexity is highest.

Most ICT audits are straightforward in a simple office environment. Our value is in the complex ones: multi-site, regulated, and operationally critical environments where the stakes are real.

Facilities management

Government and commercial FM contracts require technology that's consistent, auditable and secure across dozens or hundreds of sites. We understand the operational technology layer, the compliance obligations and the commercial reporting requirements.

Healthcare

Clinical environments have specific requirements around data sovereignty, system availability and integration with state and national health infrastructure. We've worked with hospitals, health networks and allied health providers across South Australia.

Government

Government & public sector

Government entities face unique procurement, compliance and reporting obligations. We understand the ASD ISM, Essential Eight requirements, and the audit standards that apply to government technology environments.