Risk Assurance

Today's business environment is different. More complex. More connected. Companies not only face new and unknown risks, but also new and untapped opportunities. Our team is at the forefront of this change, ready to transform how you perceive - and capitalise on - risk.

Challenging economic trends, volatile world events and disruptive technology are leaving organizations more vulnerable to risk than ever. Many are fast adapting to this new dynamic and have implemented processes and controls to manage it.

Still, boards and management need to take a holistic approach to risk, moving from reactive and compliance driven, to proactive and forward looking. Risk should be a strategic driver of performance and value creation. This is what PwC can help you achieve.

Our Services

Cyber Security, Data Privacy and Digital Identity

The PwC Cyber Security Team in Bulgaria relies on experts with many years of experience in the role of head of IT security or key specialists in Bulgaria as well as experienced security auditors who have carried out a large number of consulting or assurance projects in the field of security as well as implemented security solutions.

Find out more

Data Assurance

With data volumes doubling every year or so, more and more organisations are realising the role information plays in high-stake, competitive environments. Lost or manipulated data can ruin your reputation; but when properly understood, reliable and compliant data offers the key to industry-leading knowledge and the chance to increase business performance year on year.

Data assurance services help you to manage, analyse, optimise and transform your data into fact-based knowledge, while identifying and addressing the inconsistencies that hold organisations back.

Find out more

Internal Audit

At PwC, we are driving Internal Audit innovation merging the skills of our people with a robust, leading edge Internal Audit approach and state-of-the-art technology. The result is The PwC Internal Audit. Relevant, aligned and agile, it delivers insight and quality in equal measure and to the highest standard, helping you build the confidence to move faster and act decisively.

Learn more about:

Internal Audit Advisory 

Internal Audit Sourcing

Risk and Regulatory Services

Value for stakeholders is created, preserved, or eroded by management decisions in all activities, from setting strategy to operating the enterprise day-to-day. Enterprise Risk Management (ERM) supports value creation by enabling management to: 

  • Deal effectively with potential future events that create uncertainty; and,
  • Respond in a manner that reduces the likelihood  of downside outcomes and increases the upside.

Building on the ISO31000 standard on risk management and the COSO ERM framework, PwC has developed and refined a pragmatic and intuitive framework for organisations to focus on. This framework encompasses:

  1. Strategy and policies - the focus on risk within strategy and policy;
  2. Processes – tools and techniques to assess, manage and monitor risk;
  3. Infrastructure – mechanisms to sustain a focus on risk management;
  4. Culture and behaviour – methodologies to create and maintain a risk-focused culture and behaviours.

The PwC ERM framework is applied to design, develop, improve or assess risk management practices on a company level, business unit level, for specific processes, projects or specific risk areas.

Learn more about:

Sarbanes-Oxley Compliance

Internal Control Attestation


Implementation of the GDPR requirements has reshaped the approach to personal data protection in organizations. New requirements include the necessity for performing risk assessment in relation to personal data processing, adjustment of documentation and procedures to new regulation and accounting for wide spectrum of data subjects’ rights (people to whom the processed data apply).

Find out more

2020 Global Risk Study

PwC’s 2020 Global Risk Study surfaced a growing imperative for better collaboration between risk functions (risk management, compliance, internal audit and other risk functions). As organizations embrace the fourth industrial revolution (4IR), risk functions need to be active participants, helping to achieve and protect the value envisioned. Risks are becoming increasingly complex—and interconnected—and without close risk function collaboration, blind spots to risk will inevitably result for key stakeholders throughout an enterprise, and impact strategic, financial and operational initiatives.

Find out more


{{contentList.dataService.numberHits}} {{contentList.dataService.numberHits == 1 ? 'result' : 'results'}}

Contact us

Jock  Nunan

Jock Nunan

Managing Partner PwC SEE, Assurance Services Leader, PwC Bulgaria

Petko Petkov

Petko Petkov

Partner, SEE Risk Assurance Leader and CEE Digital Identity Leader, PwC Bulgaria

Tel: +359 894 421 042

Follow us