Excellence · Service · Commitment
Home About Services Why Us Team Insights Testimonials Contact
GRAVITUS PROFESSIONAL SERVICES

Where Integrity
Meets
Exceptional
Advisory.

Whether you are safeguarding governance, untangling financial misconduct, optimising tax exposure, scaling a business, or securing a high-value transaction — Gravitus Professional Services has the certified specialists, the proven methodologies, and the cross-border presence to see it through.

Explore Our Services Request a Consultation →
Gravitus professionals in advisory meeting — Lagos Nigeria
30+Years of Combined Experience
25+Clients Served
2Locations
70%Repeat Engagement Rate
Gravitus Professional Services office — Ikoyi Lagos Nigeria
About Us

Who We Are &
What Drives Us

Gravitus Professional Services is a premier advisory firm headquartered in Lagos, Nigeria — with a strategic presence in Northampton, United Kingdom. We exist for one purpose: to make organisations stronger, more resilient, and better equipped to win.

We were built on a conviction that world-class advisory should not be the exclusive preserve of global giants. So we brought the discipline and rigour of Big Four methodology and married it with something the giants rarely offer — genuine partnership, direct accountability, and the agility to move at the speed your organisation demands. Every engagement is owned and led by certified specialists — not delegated down.

From financial services and energy to manufacturing and technology, we work across Nigeria and the United Kingdom — cutting through complexity to address root causes, not surface symptoms, and delivering outcomes that last.

Foundation

Our Mission, Vision
& Purpose

Our Mission
Rigorous, Independent
Advisory

To deliver rigorous, independent, and client-centred professional services in internal audit, forensic accounting, financial consulting, and tax advisory — enabling clients to strengthen governance, manage risk, and achieve lasting financial integrity.

Our Vision
Africa's Most Trusted
Professional Services Firm

To be the most trusted and leading financial and management consulting firm in Africa, renowned for delivering exceptional value, precision, and transformative impact.

Our Purpose
Strengthen Every
Organisation We Touch

We exist to leave every organisation we serve measurably stronger — better governed, more resilient, and more capable of thriving independently. Every engagement is an investment in your organisation's long-term health.

Core Values

The Principles Behind
Every Engagement

Excellence

We pursue the highest standards in everything we do — from the rigour of our analysis to the quality of our deliverables. We never settle for adequate when exceptional is achievable.

Service

Our clients are at the centre of everything we do. We invest deeply in understanding each organisation's unique context and remain available and responsive long after the formal engagement concludes.

Commitment

We honour every obligation we make — to our clients, to our profession, and to the communities we serve. Our engagements begin with a promise and end only when outcomes are genuinely achieved.

Integrity

We operate under the strictest professional and ethical standards. Our assessments are never influenced by anything other than facts, evidence, and the best interests of our clients.

Insightfulness

We go beyond data to uncover the deeper patterns, risks, and opportunities that drive better decisions. Every recommendation we make is grounded in clear, evidence-based professional insight.

Our Services

Five Core
Service Lines

We offer a comprehensive and integrated suite of professional services — each delivered by certified specialists with deep sector knowledge. Partner with Gravitus Professional Services for consistent, high-quality support across all your governance, financial, and risk needs.

Governance risk and assurance professionals in boardroom — Gravitus Nigeria
Service 01

Governance, Risk
& Assurance

We go beyond routine compliance. Our risk-based internal audit practice identifies emerging threats, evaluates control effectiveness, and delivers forward-looking recommendations that genuinely protect and strengthen your organisation.

  • Internal Audit as a Service (IAaaS) — fully outsourced or co-sourcing
  • External Quality Assessment & Improvement Programme (QAIP)
  • Board Advisory, Audit Committee Effectiveness & ERM Assessment
  • Internal Control over Financial Reporting (ICOFR) design & review
  • Operational Audit
  • Information System Audit
  • Internal Control Design and Review
Enquire About This Service →
Accounting and tax advisory financial reporting — Gravitus Nigeria UK
Service 02

Accounting &
Tax Advisory

Accurate, timely financial information drives sound decisions. We provide end-to-end accounting support and expert tax advisory to maintain immaculate financial records and ensure full compliance with all reporting obligations.

  • Financial account preparation & reporting — IFRS, GAAP, sector standards
  • Tax advisory — preparation, planning, filing and dispute management
  • Regulatory compliance, statutory filings and reconciliations
  • Audit readiness and assurance support
  • Transfer pricing documentation and advisory
  • IFRS Implementation Support
Enquire About This Service →
Forensic accountant analysing financial evidence — Gravitus Nigeria
Service 03

Financial Forensics
& Investigation

When financial integrity is at stake, precision is everything. We deploy certified forensic accountants and digital investigators who apply rigorous, court-ready methodologies to uncover the facts and support resolution.

  • Internal investigations — fraud and workplace misconduct
  • Corporate intelligence, due diligence & background investigations
  • Dispute and litigation support — economic damage assessment
  • Expert witness services and Alternative Dispute Resolution (ADR)
  • Digital forensics and electronic evidence analysis
  • Financial Reconstruction and Asset Tracing
Enquire About This Service →
Financial management consulting strategy session — Gravitus Nigeria UK
Service 04

Financial & Management
Consulting

Strategic insight fuels competitive advantage. We help organisations navigate financial complexity, improve operational performance, and make evidence-based decisions that drive sustainable growth and lasting resilience.

  • Business and financial advisory
  • Operational Excellence and Business Transformation
  • Business Incubation and Acceleration Support
  • Feasibility studies, business case development & investment appraisals
  • Company secretarial — CAC registrations and annual filings
  • Sustainability reporting advisory and IFRS S1/S2 Readiness Advisory
Enquire About This Service →
Professional escrow and secure transaction services — Gravitus Nigeria
Service 05

Escrow
Services

Protecting the interests of all parties in high-value transactions requires a trusted, independent custodian. Gravitus Professional Services provides professional escrow administration — ensuring funds and assets are held securely and released strictly in accordance with agreed conditions.

  • Transaction escrow
  • Real estate and property transaction escrow
  • Project milestone & construction payment escrow
  • IT/software development escrow
  • Cross-border trade escrow
  • Asset transfer escrow
Enquire About This Service →

"We don't just assess and report. We partner with you to implement change and drive sustained improvement."

-- Gravitus Professional Services
Gravitus professional team collaboration — Lagos Nigeria
Why Gravitus Professional Services

What Sets Us Apart
From the Rest

Deep Multidisciplinary Expertise

Our team spans audit, forensic accounting, finance, consulting, tax, and digital transformation — with internationally recognised certifications and proven experience from Big Four and global consulting environments.

True Client Partnership

We invest upfront to understand your organisation's context, risks, and strategic goals. Engagements are led personally by senior practitioners — not delegated to juniors — from first conversation to final implementation.

Implementation, Not Just Reports

Every recommendation comes with a clear rationale, timeline, and accountability framework. We remain engaged post-delivery — with formal follow-up check-ins at 3, 6, and 12 months to ensure real, lasting improvement.

Uncompromising Integrity

Our independence is non-negotiable. We maintain robust confidentiality protocols, strict conflict-of-interest policies, and operate exclusively under international professional standards — so our findings are always trustworthy.

Our Process

Engagement to
Lasting Impact

A structured, transparent, five-phase methodology built on international best practice — minimising disruption to your operations while maximising the depth of insight and permanence of improvement, from initial conversation to full implementation.

01
Initial Consultation

We thoroughly understand your organisation's structure, regulatory environment, and challenges through structured stakeholder interviews. A formal engagement letter and project plan are agreed before any work commences.

02
Comprehensive Assessment

A rigorous, evidence-based evaluation benchmarked against the highest professional standards. We review methodologies, processes, systems, staffing competencies, and governance with complete objectivity.

03
Detailed Reporting

A comprehensive written report detailing findings with full supporting evidence, clearly identified strengths, and prioritised improvement areas — presented in person to key stakeholders for complete understanding.

04
Action Planning

Prioritised, actionable recommendations — each with a clear rationale, expected benefit, timeline, and responsibility assignment. We collaborate to develop a practical plan ensuring genuine organisational buy-in.

05
Implementation Support

Our engagement extends well beyond the report. We provide hands-on coaching, methodology redesign, and training — with formal follow-up check-ins at 3, 6, and 12 months as your organisation matures.

Our Team

Skilled, Versatile
& Experienced

Our multidisciplinary team spans audit, forensic accounting, finance, consulting, tax, and business transformation — bringing integrated solutions that address root causes and deliver lasting value.

Olusola Oke — Principal Consultant, Gravitus Professional Services
Olusola Oke
Principal Consultant — Governance & Assurance

A versatile and highly experienced governance and assurance practitioner. Olusola is a Chartered Accountant, Certified Internal Auditor, Certified Information System Auditor, Certified Fraud Examiner, and Computer Hacking Forensic Investigator. He is also a Certified Forensic Accountant with the American Board of Forensic Accounting (ABFA), USA.

He holds a Master of Science in Accounting and Finance from the University of Northampton, United Kingdom, an MBA from Mahatma Gandhi University, India, and a PhD in Forensic Accounting and Audit from Charisma University, USA.

Over his career, Olusola has accumulated broad experience across consulting firms and senior corporate roles, having served as a Senior Manager at Air Liquide, Allianz Insurance, and Africa Prudential Plc, among others. He has developed deep expertise in governance, fraud and workplace misconduct investigations, regulatory compliance reviews, and internal control advisory. As Principal Consultant, he provides strategic advisory services to corporate entities seeking to strengthen governance, improve internal controls, and detect and prevent fraud.

Jubril Dosunmu — Business Analysis & Transformation Lead, Gravitus Professional Services
Jubril Dosunmu
Business Analysis & Transformation Lead

A seasoned Business Analysis and Transformation professional with extensive experience delivering complex digital and enterprise change initiatives across consulting, financial services, and the public sector. He holds a Master of Science in Management from the University of Northampton, United Kingdom, and is a Certified Business Analysis Professional (CBAP).

His professional certifications span multiple disciplines and include TOGAF, ITIL v4, Lean Six Sigma Green Belt, Certified Scrum Master, Certified Scrum Product Owner, and PRINCE2 Foundation, among others — reflecting a breadth of capability across enterprise architecture, service management, agile delivery, and project management.

Jubril has a strong track record of delivering value on large-scale initiatives at leading consulting firms including Deloitte, KPMG, Capgemini, Capita, and NUA Consulting in the United Kingdom. He specialises in bridging business needs with technology solutions, driving process optimisation, and enabling successful project delivery. Jubril is passionate about mentoring and developing high-performing teams.

Client Voices

What Our Clients
Say About Us

01

Engaging Gravitus Professional Services was one of the best decisions we made as a growing business. Their advisory approach is genuinely world-class — they took the time to understand our model, identified gaps we had completely overlooked, and delivered recommendations that were actionable from day one.

Co-Founder Moneydrop (Pty) Limited, Australia
02

Gravitus Professional Services handled our tax and accounting advisory with a level of professionalism that exceeded our expectations. As a food business operating in England, getting the compliance piece right was critical — and they made the entire process seamless. We would not hesitate to recommend them.

Founder 9ja Cuisine, England
03

The firm was instrumental in our growth journey. From business incubation and acceleration support through to company secretarial services and financial advisory, they provided end-to-end support that gave us a solid foundation to scale with confidence. Their team is knowledgeable, responsive, and genuinely invested in client success.

Managing Director Internopay Incorporated, Nigeria
04

Your company transformed how we think about internal audit. They didn't just conduct the review — they embedded best practices, upskilled our team, and left us with a function that is stronger, more independent, and genuinely valued at the board level. A truly impactful engagement.

Head of Internal Audit Troys Investment

"We don't just assess and report.
We partner with you to implement change
and drive sustained improvement."

Thought Leadership

Insights &
Perspectives

All Insights & Articles →
Internal Audit

The New IIA Global Standards: What Nigerian Organisations Need to Know in 2025

The IIA's updated Global Internal Audit Standards came into effect in 2024. We break down the key changes, what they mean for in-house audit functions, and how boards and audit committees should be responding.

March 2025 Read More →
Forensic Accounting

Fraud Trends in Nigeria's Financial Sector: Patterns, Vectors & Prevention

Drawing on our forensic engagements, we analyse the most common fraud typologies affecting Nigerian businesses today — from payroll manipulation to procurement collusion — and what proactive controls can prevent them.

February 2025 Read More →
Tax Advisory

IFRS S1 & S2: A Practical Readiness Guide for Nigerian and UK Businesses

Sustainability reporting standards are no longer optional for forward-thinking organisations. We outline exactly what IFRS S1 and S2 require, the timeline for adoption, and the steps businesses should be taking now.

January 2025 Read More →
GRAVITUS PROFESSIONAL SERVICES
Engage Us

Start the
Conversation

Tell us about your organisation's challenges. Our team responds within 24 hours to arrange an initial consultation — strictly confidential, no obligation.

Strictly Confidential. All enquiries are handled with absolute discretion — no obligation, no pressure. Your information is never shared with third parties.
🇳🇬
Nigeria Office
12A Olusegun Aina Street
Parkview Estate, Ikoyi
Lagos 106104, Nigeria
🇬🇧
United Kingdom Office
10 Harborough Road
Northampton NN2 7AZ
England, United Kingdom
info@gravitus.org www.gravitus.org +234 904 217 0801 (Nigeria) +44 7447 921 252 (UK)

Prepared with precision.
Delivered with excellence.

All engagements are strictly confidential
Privacy Policy

1. Who We Are

Gravitus Professional Services ("Gravitus", "we", "us" or "our") is a multidisciplinary professional services firm providing internal audit, forensic accounting, financial and management consulting, accounting, and tax advisory services. We operate from our principal office at 12A Olusegun Aina Street, Parkview Estate, Ikoyi, Lagos 106104, Nigeria, and our United Kingdom office at 10 Harborough Road, Northampton NN2 7AZ, England. You may contact our Data Protection Officer at info@gravitus.org.

2. Legal Framework

This Privacy Policy is issued in compliance with:

  • The Nigeria Data Protection Act 2023 (NDPA) and the Nigeria Data Protection Regulation 2019 (NDPR) issued by the National Information Technology Development Agency (NITDA)
  • The UK General Data Protection Regulation (UK GDPR) as retained in UK law by the European Union (Withdrawal) Act 2018
  • The UK Data Protection Act 2018
  • The Privacy and Electronic Communications Regulations 2003 (PECR) (UK)
  • The professional confidentiality obligations applicable to Chartered Accountants, Certified Internal Auditors, Certified Fraud Examiners, and Forensic Accountants under their respective professional bodies' codes of ethics

3. Personal Data We Collect

In the course of operating our website and delivering our professional services, we collect and process the following categories of personal data:

  • Identity Data: Full name, job title, professional qualifications, and organisation name
  • Contact Data: Email address, telephone number, postal address
  • Enquiry and Engagement Data: Details of services requested, nature of instructions, engagement correspondence, and reports
  • Financial Data: Bank account details and billing information where applicable to fee arrangements
  • Technical Data: IP address, browser type and version, time zone, browser plug-in types, operating system, and platform collected through website use
  • Usage Data: Information about how you use our website
  • Special Category Data: Where our forensic or investigation engagements necessitate processing data relating to criminal convictions, offences, or allegations thereof, we do so only under explicit lawful authority and with appropriate safeguards in place

4. How We Collect Personal Data

  • Direct interactions: When you submit an enquiry through our website contact form, correspond with us by email or telephone, or engage our services under a formal engagement letter
  • Automated technologies: Through cookies and similar tracking technologies as you navigate our website (see our Cookie Policy)
  • Third parties: From referring organisations, professional introducers, regulatory bodies, or publicly available sources during due diligence and background investigation work

5. Legal Bases for Processing

We rely on the following lawful bases to process your personal data:

  • Contract: Where processing is necessary to perform or prepare to perform a professional services engagement you have instructed
  • Legitimate Interests: To manage our business operations, respond to enquiries, maintain client relationships, conduct due diligence, and improve our services — where these interests are not overridden by your fundamental rights
  • Legal Obligation: To comply with anti-money laundering regulations (AMLB Act, SCUML/GIABA requirements in Nigeria; POCA 2002, MLR 2017 in the UK), tax obligations, court orders, and mandatory professional reporting obligations
  • Consent: Where you have given explicit consent, for example to receive professional insights or publications
  • Vital Interests / Public Task: Where relevant to fraud prevention, financial crime investigations, or court-ordered forensic proceedings

6. Confidentiality and Professional Duty

All data processed in connection with professional engagements — including client instructions, findings, evidence, and reports — is subject to strict professional confidentiality obligations binding on all Gravitus Professional Services personnel. These obligations arise independently of, and in addition to, data protection law, and persist beyond the termination of any engagement.

7. How We Use Your Personal Data

  • To respond to enquiries and manage the pre-engagement process
  • To deliver agreed professional services, including internal audit, forensic investigations, accounting, tax advisory, and consulting engagements
  • To prepare engagement letters, reports, recommendations, and related deliverables
  • To comply with our professional, regulatory, and legal obligations
  • To send professional insights, technical updates, and firm announcements (where consented or within legitimate interests)
  • To improve our website and service delivery
  • To maintain accurate records as required by our professional bodies and applicable law

8. Disclosure of Personal Data

We do not sell, rent, or trade personal data. We may share data with:

  • Professional advisers and sub-contractors engaged under strict confidentiality obligations to assist in delivering services (e.g. expert witnesses, specialist consultants)
  • Regulatory and law enforcement bodies where required by law, including the Financial Reporting Council (FRC), ICAN, NITDA, the ICPC, EFCC, SCUML in Nigeria, and the FCA, ICO, HMRC, or NCA in the United Kingdom
  • Courts and tribunals where disclosure is required in connection with litigation, arbitration, or court-ordered forensic proceedings
  • Our affiliated offices in Nigeria and the United Kingdom, subject to appropriate cross-border transfer safeguards

9. International Data Transfers

Where personal data is transferred between our Nigeria and UK offices, we apply appropriate safeguards consistent with both the NDPA 2023 and UK GDPR, including the use of Standard Contractual Clauses or equivalent mechanisms as recognised by NITDA and the UK Information Commissioner's Office (ICO). Nigeria is not currently an EU/UK adequacy country; accordingly, all cross-border transfers are made subject to documented transfer risk assessments.

10. Data Retention

We retain personal data only for as long as necessary. As a professional services firm, our retention periods are governed by:

  • Professional indemnity and limitation periods — generally seven (7) years from engagement closure in Nigeria and six (6) years in the UK (Limitation Act 1980)
  • Anti-money laundering requirements — five (5) years from the end of the business relationship under AMLB Act (Nigeria) and MLR 2017 (UK)
  • Tax and accounting obligations — as prescribed by the Federal Inland Revenue Service (FIRS) and HM Revenue and Customs (HMRC)
  • Court-ordered retention periods where forensic evidence is the subject of ongoing or anticipated proceedings

11. Your Rights

Subject to applicable law and professional confidentiality obligations, you have the right to:

  • Access your personal data held by us
  • Rectification of inaccurate or incomplete data
  • Erasure (right to be forgotten) where no overriding legal or professional obligation requires retention
  • Restriction of processing in certain circumstances
  • Data portability where processing is based on consent or contract
  • Object to processing based on legitimate interests
  • Withdraw consent at any time where processing relies on consent, without affecting the lawfulness of prior processing

To exercise any of these rights, contact us at info@gravitus.org. We will respond within 30 days (NDPA) or one month (UK GDPR) of receipt of a valid request.

12. Complaints

If you are dissatisfied with our handling of your personal data:

  • Nigeria: You may lodge a complaint with the Nigeria Data Protection Commission (NDPC) at ndpc.gov.ng
  • United Kingdom: You may lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk or by telephone on 0303 123 1113

We encourage you to contact us first so we may address your concern directly.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, regulation, or our practices. Material changes will be communicated via our website. This policy was last reviewed in January 2026.

Last Updated: January 2026  •  Compliant with NDPA 2023 & UK GDPR
Terms of Use

1. Acceptance of Terms

By accessing or using the Gravitus Professional Services website at www.gravitus.org ("the Site"), you agree to be bound by these Terms of Use. If you do not accept these terms, please do not use the Site. These Terms of Use are governed by the laws of the Federal Republic of Nigeria, with supplementary application of the laws of England and Wales in respect of our United Kingdom operations.

2. About Gravitus Professional Services

Gravitus Professional Services is a multidisciplinary professional advisory firm providing internal audit, forensic accounting, financial and management consulting, accounting, and tax advisory services. We operate under the regulatory oversight of applicable professional bodies in Nigeria and the United Kingdom, including the Institute of Chartered Accountants of Nigeria (ICAN), the Chartered Institute of Internal Auditors, the Association of Certified Fraud Examiners (ACFE), and the Institute of Business Analysis (IIBA).

3. No Professional Relationship or Advice

The content published on this Site — including articles, insights, commentary, and service descriptions — is provided for general informational purposes only. Nothing on this Site constitutes professional audit, forensic accounting, tax, legal, financial, or consultancy advice, nor does it create a professional-client relationship. Decisions made in reliance on website content without formal written engagement with Gravitus Professional Services are made entirely at your own risk. A formal engagement is established only upon the execution of a written engagement letter signed by an authorised representative of Gravitus Professional Services.

4. Permitted Use of the Site

You may use this Site only for lawful purposes and in a manner consistent with these Terms. You agree not to:

  • Reproduce, distribute, or commercially exploit any content from this Site without our prior written consent
  • Use the Site in any way that violates applicable Nigerian or UK law, including the Cybercrimes (Prohibition, Prevention, etc.) Act 2015 (Nigeria) and the Computer Misuse Act 1990 (UK)
  • Attempt to gain unauthorised access to any part of our systems or infrastructure
  • Transmit unsolicited commercial communications or malicious code
  • Misrepresent your identity or affiliation with any person or organisation
  • Use automated tools to scrape, harvest, or index Site content

5. Intellectual Property

All content on this Site — including text, reports, graphics, logos, the Gravitus name and brand, and service descriptions — is the intellectual property of Gravitus Professional Services and is protected under Nigerian copyright law (Copyright Act 2022) and UK copyright law (Copyright, Designs and Patents Act 1988). Unauthorised reproduction, adaptation, or distribution is strictly prohibited and may give rise to civil and criminal liability.

6. Confidentiality of Enquiries

All enquiries submitted through our website contact form are treated as strictly confidential. However, submission of an enquiry does not constitute the commencement of a professional engagement or trigger any professional duty of care unless and until a formal engagement letter has been executed.

7. Links to Third-Party Websites

This Site may contain links to third-party websites for reference purposes only. Gravitus Professional Services does not endorse, control, or accept responsibility for the content, accuracy, or practices of any third-party site. You access such sites entirely at your own risk.

8. Limitation of Liability

To the fullest extent permitted by law — including the provisions of the Nigerian Cyber Crimes Act, the Electronic Transactions Act (Nigeria), and the Unfair Contract Terms Act 1977 (UK) — Gravitus Professional Services shall not be liable for any direct, indirect, incidental, consequential, or punitive loss or damage arising from your use of, or inability to use, this Site or any content hereon. This limitation does not apply where liability cannot be excluded by law, including for fraud or personal injury caused by negligence.

9. Availability and Accuracy

We endeavour to keep this Site available and accurate, but we make no warranty — express or implied — as to its uninterrupted availability, freedom from errors, or fitness for a particular purpose. We reserve the right to suspend or withdraw access to the Site at any time without notice.

10. Professional Regulatory Compliance

Gravitus Professional Services complies with applicable anti-money laundering and counter-terrorism financing obligations under the Money Laundering (Prohibition) Act 2011 (as amended) in Nigeria and the Proceeds of Crime Act 2002 and Money Laundering Regulations 2017 in the United Kingdom. We are required by law to verify the identity of clients and may be obliged to report suspicious activity to relevant authorities without notification to the client concerned.

11. Governing Law and Dispute Resolution

These Terms of Use are governed by the laws of the Federal Republic of Nigeria. For matters arising in connection with our United Kingdom operations, the laws of England and Wales apply. Any dispute arising from these Terms that cannot be resolved amicably shall be referred to arbitration in Lagos, Nigeria, under the Arbitration and Conciliation Act (Cap. A18, LFN 2004), or in London under the Arbitration Act 1996 as applicable. Each party bears its own costs unless otherwise ordered.

12. Amendments

We reserve the right to amend these Terms of Use at any time. Amendments take effect upon publication on this Site. Your continued use of the Site after any amendment constitutes acceptance of the revised Terms.

13. Contact

For any questions regarding these Terms of Use, contact us at info@gravitus.org or at either of our offices in Lagos, Nigeria or Northampton, United Kingdom.

Last Updated: January 2026  •  Governed by Nigerian Law & English Law
Cookie Policy

1. What Are Cookies

Cookies are small text files placed on your device when you visit a website. They are widely used to make websites function correctly, operate more efficiently, and to provide information to website owners. This Cookie Policy explains how Gravitus Professional Services uses cookies on www.gravitus.org and your rights in relation to them.

2. Legal Framework

Our use of cookies is governed by:

  • The Nigeria Data Protection Act 2023 (NDPA) and NITDA Guidelines on cookies and online tracking
  • The Privacy and Electronic Communications Regulations 2003 (PECR) (UK) — the primary UK law governing cookies
  • The UK GDPR — where cookies process personal data
  • Guidance issued by the UK Information Commissioner's Office (ICO)

3. Cookies We Use

Strictly Necessary Cookies — These are essential for the website to function and cannot be disabled. They do not store personally identifiable information. They include cookies that:

  • Remember your cookie consent preferences
  • Ensure secure transmission of data via our contact form
  • Maintain basic website functionality and navigation

Analytics and Performance Cookies — Where enabled, these help us understand how visitors interact with our website by collecting information in aggregate, anonymised form. This enables us to improve the Site's structure and content. No individual visitor is identified. These cookies require your prior consent under both PECR (UK) and the NDPA (Nigeria).

Functionality Cookies — These remember your preferences and settings to improve your experience on return visits.

We do not use advertising, retargeting, or behavioural profiling cookies. We do not permit third-party advertisers to place cookies on this Site.

4. Third-Party Cookies

Our Site may include functionality powered by Google Fonts (typography) and Unsplash (imagery). These providers may set their own cookies. We have no control over such third-party cookies. Please refer to the respective providers' cookie and privacy policies for further information.

5. Your Consent

In compliance with PECR (UK) and the NDPA 2023 (Nigeria), we obtain your prior, informed, and freely given consent before placing any non-essential cookies on your device. Strictly necessary cookies do not require consent as they are essential to the Site's operation.

You may withdraw your consent at any time by adjusting your browser settings or by contacting us at info@gravitus.org. Withdrawing consent does not affect any lawful use of cookies prior to withdrawal.

6. Managing Cookies Through Your Browser

You can control or delete cookies through your browser settings. Below are links to guidance for commonly used browsers:

  • Google Chrome: Settings > Privacy and Security > Cookies and other site data
  • Mozilla Firefox: Options > Privacy & Security > Cookies and Site Data
  • Microsoft Edge: Settings > Cookies and site permissions
  • Apple Safari: Preferences > Privacy > Cookies and website data

Please note that restricting cookies may affect the functionality of this website.

7. Cookie Retention Periods

Strictly necessary session cookies expire when you close your browser. Preference and analytics cookies (where consented) are retained for a maximum of 12 months from the date of placement, after which renewed consent is sought in accordance with ICO guidance.

8. Changes to This Policy

We may update this Cookie Policy from time to time to reflect changes in law, technology, or our practices. Material changes will be communicated via a notice on our website. This policy was last reviewed in January 2026.

9. Contact

For any questions about our use of cookies, contact our Data Protection Officer at info@gravitus.org.

Last Updated: January 2026  •  Compliant with PECR (UK) & NDPA 2023
Disclaimer

1. General Information Only

The information published on this website — including service descriptions, professional insights, articles, and commentary — is provided for general informational purposes only. While Gravitus Professional Services takes all reasonable care to ensure the accuracy and currency of information published, no representation or warranty — express or implied — is made as to its completeness, accuracy, reliability, or fitness for any particular purpose.

2. No Professional Advice

Nothing on this website constitutes or should be relied upon as professional audit, forensic accounting, tax, legal, financial, or management consultancy advice. Gravitus Professional Services provides professional services exclusively under formal written engagement letters executed between the firm and the client. Any action taken or omitted on the basis of information on this website, without first obtaining formal written professional advice from Gravitus Professional Services or another qualified professional, is taken entirely at your own risk.

3. Nature of Professional Services

Gravitus Professional Services provides specialised advisory services including:

  • Internal Audit: Assessments of internal control, governance, and risk management frameworks. Findings and recommendations represent the professional judgement of our practitioners at the time of engagement and are based on information made available to us. They do not constitute a guarantee of the absence of fraud, error, or irregularity beyond the scope expressly defined in the engagement letter.
  • Forensic Accounting and Investigations: Findings are based on evidence available at the time of investigation and are prepared for the specific purpose stated in the engagement letter. They may not be relied upon for purposes other than those for which they were prepared without our express written consent.
  • Tax Advisory: Tax opinions and advice are based on the law and regulatory guidance in force at the date of advice. Tax law changes frequently; Gravitus Professional Services accepts no liability for any loss arising from a change in law, regulation, or practice after the date advice is given, unless specifically retained to monitor such changes.
  • Financial and Management Consulting: Recommendations and projections involve inherent uncertainty. Actual outcomes may differ materially from those described. Forward-looking statements on this website are not guarantees of future performance.

4. Regulatory Status

Gravitus Professional Services operates under the professional and regulatory requirements applicable in Nigeria and the United Kingdom. Our Nigerian operations are subject to the oversight of relevant Nigerian regulatory bodies including ICAN, the Financial Reporting Council of Nigeria (FRCN), the Securities and Exchange Commission (SEC), and the Central Bank of Nigeria (CBN) where applicable. Our United Kingdom operations comply with requirements applicable under English law and relevant UK regulatory frameworks. The regulatory status of Gravitus may vary depending on the nature of the specific service being provided.

5. No Engagement Without a Written Agreement

No professional engagement, duty of care, or professional-client relationship is established by your use of this website, by making an enquiry, or by attending any event hosted by Gravitus Professional Services. A formal professional relationship is created only upon the execution of a written engagement letter or service agreement.

6. Anti-Money Laundering Obligations

As a professional services firm subject to anti-money laundering regulations in both Nigeria (Money Laundering (Prohibition) Act 2011 as amended, and the Terrorism Prevention Act 2011) and the United Kingdom (Proceeds of Crime Act 2002 and Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017), Gravitus Professional Services may be legally required to verify client identity, retain records, and report suspicious activity to the relevant authorities without prior notification to the client.

7. Limitation of Liability

To the fullest extent permitted by applicable law — including the provisions of the Nigerian Civil Liability Act, the Limitation Law of Lagos State, and the Unfair Contract Terms Act 1977 (UK) — Gravitus Professional Services, its directors, principals, employees, and associates shall not be liable for any direct, indirect, incidental, special, consequential, or punitive loss or damage arising from:

  • Use of, or inability to use, this website or its content
  • Reliance on any information published on this website without formal professional engagement
  • Any delay, interruption, or unavailability of the website
  • Any third-party content linked to or referenced from this website

This limitation does not exclude or restrict liability where such exclusion is not permitted by law, including liability for death or personal injury caused by negligence, or for fraudulent misrepresentation.

8. Jurisdiction

This Disclaimer is governed by the laws of the Federal Republic of Nigeria. For matters arising in connection with our United Kingdom operations, the laws of England and Wales shall apply. By accessing this website, you submit to the non-exclusive jurisdiction of the courts of Nigeria and, where applicable, the courts of England and Wales.

9. Amendments

Gravitus Professional Services reserves the right to amend this Disclaimer at any time. Amendments take effect upon publication on this website. This Disclaimer was last reviewed in January 2026.

Last Updated: January 2026  •  Nigerian Law & English Law
Accessibility Statement

1. Our Commitment

Gravitus Professional Services is committed to ensuring that our website at www.gravitus.org is accessible to all users, including persons with disabilities. We strive to meet and exceed the applicable accessibility standards in both Nigeria and the United Kingdom and to continually improve the user experience for everyone.

2. Legal Framework

This Accessibility Statement is issued in compliance with:

  • The UK Equality Act 2010 — which requires service providers to make reasonable adjustments to ensure persons with disabilities are not placed at a substantial disadvantage
  • The Public Sector Bodies (Websites and Mobile Applications) Accessibility Regulations 2018 (UK) — implementing WCAG 2.1 Level AA as the applicable standard
  • The Discrimination Against Persons with Disabilities (Prohibition) Act 2018 (Nigeria) — which protects the rights of persons with disabilities to access services on an equal basis
  • The Web Content Accessibility Guidelines (WCAG) 2.1 published by the World Wide Web Consortium (W3C), which provide the internationally recognised technical standard for web accessibility

3. Conformance Status

We aim to conform to WCAG 2.1 Level AA. Our website has been designed with the following accessibility features in mind:

  • Keyboard navigation: The website can be navigated using a keyboard alone. A "Skip to main content" link is provided at the top of every page for keyboard and screen reader users
  • Focus indicators: Visible focus outlines are displayed on all interactive elements — links, buttons, and form fields — when navigated by keyboard
  • Colour contrast: Text and interactive elements are designed to meet the minimum contrast ratio of 4.5:1 against their background as required by WCAG 2.1 Success Criterion 1.4.3
  • Scalable text: Text can be resized up to 200% without loss of content or functionality
  • Alternative text: Meaningful images include descriptive alternative text attributes to support screen reader users
  • Semantic HTML: The website uses semantic markup including proper heading hierarchy, landmark regions, and ARIA labels to assist assistive technologies
  • Form accessibility: All contact form fields include associated labels accessible to screen readers
  • Responsive design: The website is fully responsive and accessible across desktop, tablet, and mobile devices
  • No flashing content: The website does not contain content that flashes more than three times per second, in compliance with WCAG 2.1 Success Criterion 2.3.1

4. Known Limitations

While we strive for full accessibility, we acknowledge the following known limitations which we are actively working to address:

  • Some third-party content (including embedded imagery from Unsplash and typography from Google Fonts) may not fully meet all accessibility requirements. We continue to monitor third-party integrations
  • PDF documents and downloadable materials, where provided, may not yet be fully accessible. We are committed to improving the accessibility of all downloadable content
  • Complex data visualisations or animated elements may present challenges for some users. We provide text-based alternatives wherever possible

5. Assistive Technology Compatibility

This website has been tested for compatibility with the following assistive technologies:

  • Screen readers — NVDA and JAWS (Windows), VoiceOver (macOS and iOS), TalkBack (Android)
  • Keyboard-only navigation across modern browsers (Chrome, Firefox, Edge, Safari)
  • Browser zoom and text resizing up to 200%
  • High contrast mode on Windows and macOS

6. Reasonable Adjustments

In accordance with the UK Equality Act 2010 and the Nigerian Discrimination Against Persons with Disabilities (Prohibition) Act 2018, Gravitus Professional Services will make reasonable adjustments to ensure that persons with disabilities can access our professional services on an equal basis. If you require our professional services content — including reports, presentations, or engagement correspondence — in an alternative accessible format, please contact us and we will make every reasonable effort to accommodate your needs.

7. Feedback and Contact

We welcome feedback on the accessibility of our website. If you experience any barriers to access, or if you require content in an alternative format, please contact us:

We aim to respond to accessibility feedback within 10 working days.

Last Updated: January 2026
The New IIA Global Standards: What Nigerian Organisations Need to Know

Background

The Institute of Internal Auditors (IIA) released its updated Global Internal Audit Standards — the first comprehensive revision in over two decades — which came into full effect in January 2024. The new Standards represent a fundamental shift in how internal audit functions are expected to be structured, governed, and measured, and they carry significant implications for Nigerian organisations whether their internal audit function is in-house, co-sourced, or fully outsourced.

What Has Changed?

The updated Standards move away from a compliance-focused framework toward a principles-based approach built around five domains: Purpose of Internal Auditing, Ethics and Professionalism, Governing the Internal Audit Function, Managing the Internal Audit Function, and Performing Internal Audit Services. This restructuring reflects the IIA's recognition that internal audit must be seen not merely as a control-testing function, but as a strategic assurance partner to the board and senior management.

Key changes of note include: a stronger emphasis on the Chief Audit Executive's (CAE) direct accountability to the board rather than to management; mandatory requirements around quality assurance and improvement programmes (QAIP), including periodic external assessments; explicit expectations around the use of technology and data analytics in audit engagements; and enhanced requirements for independence and objectivity that now address organisational structures more rigorously than before.

Why This Matters for Nigerian Organisations

For organisations operating in Nigeria — particularly those in regulated sectors such as banking, insurance, capital markets, and pensions — the new IIA Standards create a direct alignment challenge. Nigerian regulators, including the Central Bank of Nigeria (CBN), the National Insurance Commission (NAICOM), and the Securities and Exchange Commission (SEC), increasingly reference IIA Standards in their supervisory expectations. An internal audit function that has not transitioned to the new Standards risks regulatory scrutiny and reputational exposure.

For boards and audit committees, the new Standards are equally consequential. The expanded requirements for board-level oversight of the internal audit function — including approval of the internal audit charter, the audit plan, and the CAE's performance — place a new burden of active governance on directors who may previously have treated internal audit oversight as a management matter.

The QAIP Imperative

One of the most operationally significant requirements of the new Standards is the mandatory Quality Assurance and Improvement Programme (QAIP). Under the updated framework, all internal audit functions — regardless of size — are required to have a QAIP in place. This includes ongoing internal assessments and periodic external quality assessments conducted by a qualified, independent assessor at least once every five years.

For many Nigerian organisations, this requirement will necessitate immediate action. A large proportion of in-house audit functions currently operate without a formal QAIP, and even fewer have undergone an external quality assessment. Organisations that cannot demonstrate QAIP conformance risk being unable to state in their reports that their work is conducted "in conformance with the International Standards for the Professional Practice of Internal Auditing" — a representation that is increasingly expected by sophisticated boards and external auditors.

Practical Steps for Organisations

Organisations should begin by conducting a gap assessment of their current internal audit function against the new Standards across all five domains. The gap assessment will identify structural, governance, operational, and competency gaps that need to be addressed. From there, a transition plan can be developed — typically a 12 to 18 month programme depending on the size and maturity of the audit function.

Audit committees should request a briefing from their CAE on the organisation's current conformance status and transition timeline. Where the internal audit function is outsourced or co-sourced, the engagement letter or service agreement should be reviewed to confirm that the service provider is delivering work in accordance with the new Standards.

How Gravitus Professional Services Can Help

Gravitus Professional Services offers independent External Quality Assessments (EQA) and gap reviews conducted by our CIA and CISA certified practitioners against the new IIA Global Internal Audit Standards. We also provide internal audit co-sourcing and outsourcing services fully aligned to the new Standards, and advisory support to boards and audit committees seeking to strengthen their internal audit oversight governance. Contact us to discuss how we can support your organisation's transition.

March 2025  •  Internal Audit  •  Gravitus Professional Services
Fraud Trends in Nigeria's Financial Sector: Patterns, Vectors & Prevention

Introduction

Fraud remains one of the most significant and persistent threats to Nigerian businesses across sectors. Drawing on our forensic accounting engagements and publicly available industry data, this article examines the dominant fraud typologies currently affecting Nigerian organisations — with particular focus on the financial sector — and outlines the proactive controls that boards, management, and internal audit functions can implement to reduce exposure.

The Scale of the Problem

Reports from the Financial Institutions Training Centre (FITC), the Economic and Financial Crimes Commission (EFCC), and sector regulators consistently document significant and growing fraud losses in the Nigerian financial sector. The most heavily affected areas include deposit money banks, microfinance institutions, fintech payment platforms, and insurance companies. Critically, the data consistently shows that the majority of fraud incidents involve insider participation — either as the primary perpetrator or as an enabler — underscoring the importance of strong internal controls and a robust culture of accountability.

Dominant Fraud Typologies

Payroll and Ghost Employee Fraud. One of the most prevalent and consistently underdetected fraud schemes in Nigerian organisations. Ghost employees — fictitious individuals or former staff whose records remain active — continue to draw salaries, allowances, and pension contributions. In larger organisations, these schemes can persist undetected for years, particularly where payroll processing and authorisation are not adequately segregated, and where HR and finance data are not regularly reconciled.

Procurement and Vendor Fraud. Procurement fraud encompasses a wide range of schemes including bid rigging, fictitious vendors, inflated invoices, duplicate payments, and kickback arrangements. These schemes are particularly prevalent in organisations with weak vendor management frameworks, inadequate segregation of duties in the procure-to-pay cycle, and limited use of data analytics to identify anomalous payment patterns.

Financial Statement Manipulation. The deliberate misrepresentation of financial results — through revenue recognition manipulation, fictitious transactions, or the concealment of liabilities — remains a significant risk, particularly in organisations under performance pressure or where management has disproportionate influence over the financial reporting process.

Cybercrime-Enabled Financial Fraud. The rapid digitalisation of financial services in Nigeria has created new and expanding fraud vectors. Business Email Compromise (BEC), SIM-swap fraud, account takeover attacks, and social engineering targeting finance and treasury staff have grown substantially. These schemes frequently exploit weak authentication controls, insufficient staff awareness training, and inadequate transaction monitoring.

Expense Reimbursement Fraud. The misappropriation of company funds through falsified or inflated expense claims remains common across sectors. It is frequently categorised as low-risk by management, but in aggregate — particularly in organisations with large field-based or travel-intensive workforces — the financial impact can be material.

Why Controls Fail

In the majority of our forensic engagements, fraud succeeded not because controls were absent, but because controls were not operating effectively. Common failure points include: inadequate segregation of duties due to staffing constraints; override of controls by senior management; internal audit functions that are insufficiently independent or resourced to detect management fraud; and a cultural reluctance to report suspicions internally due to fear of retaliation or disbelief.

Proactive Prevention Measures

Effective fraud prevention requires a layered approach. Boards and senior management should prioritise: implementation of a confidential fraud reporting mechanism (whistleblowing hotline) with genuine board-level oversight; regular data analytics routines across payroll, procurement, and expense data to identify anomalies; periodic forensic-style reviews of high-risk business units and processes; mandatory rotation of staff in sensitive roles; and a zero-tolerance disciplinary framework that is consistently applied regardless of seniority.

Internal audit functions should incorporate fraud risk assessment as a core element of the annual audit planning process, and ensure that audit programmes specifically test for the fraud schemes most prevalent in the organisation's sector and operating context.

How Gravitus Professional Services Can Help

Our forensic accounting and investigation team — led by a Certified Fraud Examiner (CFE) and Computer Hacking Forensic Investigator (CHFI) — conducts fraud risk assessments, internal investigations, digital forensics, and proactive data analytics engagements for organisations across Nigeria and the United Kingdom. Contact us to discuss how we can help protect your organisation.

February 2025  •  Forensic Accounting  •  Gravitus Professional Services
IFRS S1 & S2: A Practical Readiness Guide for Nigerian and UK Businesses

Introduction

Sustainability reporting has moved decisively from the margins of corporate governance to its centre. The International Sustainability Standards Board (ISSB) — established by the IFRS Foundation — issued IFRS S1: General Requirements for Disclosure of Sustainability-related Financial Information and IFRS S2: Climate-related Disclosures in June 2023. These standards are rapidly being adopted or referenced by regulators across major economies, and both Nigerian and UK-based organisations need to understand what is required and when.

What Are IFRS S1 and S2?

IFRS S1 establishes the overarching framework for sustainability-related financial disclosures. It requires organisations to disclose information about sustainability-related risks and opportunities that could reasonably be expected to affect the entity's cash flows, access to finance, or cost of capital over the short, medium, or long term. The standard is built around four pillars: governance, strategy, risk management, and metrics and targets — a structure deliberately aligned with the Task Force on Climate-related Financial Disclosures (TCFD) recommendations.

IFRS S2 operates within the S1 framework but focuses specifically on climate-related risks and opportunities. It requires disclosure of an organisation's exposure to physical climate risks (such as flooding, extreme heat, or drought) and transition risks (such as policy changes, technology shifts, or changing market preferences), alongside the organisation's strategy for managing these risks and the metrics used to track performance against climate-related targets.

The UK Position

The United Kingdom has been among the most progressive jurisdictions in adopting sustainability disclosure requirements. The UK Sustainability Disclosure Standards (UK SDS) — developed by the UK Endorsement Board — are closely based on IFRS S1 and S2. Mandatory application is expected to apply first to the largest UK-listed entities and thereafter to a broader population of companies on a phased basis. UK-based subsidiaries of multinational groups and companies with UK-listed securities should be actively monitoring the UK SDS adoption timeline and assessing their readiness.

The Nigerian Position

In Nigeria, the Financial Reporting Council of Nigeria (FRCN) has signalled its intention to adopt ISSB Standards as the basis for sustainability reporting in Nigeria. The Nigerian Exchange Group (NGX) has also been progressively strengthening its sustainability disclosure expectations for listed companies. While mandatory adoption timelines for Nigeria are still being finalised, early movers — particularly those seeking international capital, operating in sectors sensitive to environmental and social risks, or reporting to multinational parent entities — should not wait for a regulatory mandate before beginning their readiness journey.

What Does Readiness Look Like?

Readiness for IFRS S1 and S2 reporting involves four interconnected workstreams. First, governance: organisations must establish board-level accountability for sustainability risks and opportunities, which may require changes to board committee structures, terms of reference, and director competency frameworks. Second, data infrastructure: unlike financial reporting, sustainability data is frequently unstructured, dispersed across business units, and not subject to the same controls as financial data. Establishing reliable, auditable data collection processes is typically the most time-consuming and resource-intensive element of readiness. Third, materiality assessment: IFRS S1 requires a sustainability materiality assessment to identify which sustainability-related risks and opportunities are most relevant to the organisation's specific business model and context. Fourth, scenario analysis: IFRS S2 requires climate scenario analysis — the modelling of how different climate futures could affect the organisation's strategy and financial performance — which is a discipline many organisations have not previously undertaken.

Common Readiness Gaps We Observe

In our advisory engagements, the most common gaps we observe are: absence of board-level sustainability governance; no structured process for identifying and assessing sustainability-related risks alongside financial risks; limited or no Scope 1, 2, and 3 greenhouse gas emissions data; and sustainability reporting that is currently housed in communications or marketing functions rather than finance and risk — which creates significant challenges when the standards require financial-grade rigour and assurance.

How Gravitus Professional Services Can Help

We provide IFRS S1 and S2 readiness assessments, materiality assessment facilitation, sustainability governance advisory, and gap analysis reports for organisations across Nigeria and the United Kingdom. Our advisory is grounded in the Standards and calibrated to the regulatory context of each jurisdiction. Contact us to begin your readiness assessment.

January 2025  •  Tax Advisory  •  Gravitus Professional Services
Insights & Perspectives — All Articles

Internal Audit

The New IIA Global Standards: What Nigerian Organisations Need to Know in 2025
The IIA's updated Global Internal Audit Standards came into effect in 2024. We break down the key changes, what they mean for in-house audit functions, and how boards and audit committees should be responding.
March 2025

Forensic Accounting

Fraud Trends in Nigeria's Financial Sector: Patterns, Vectors & Prevention
Drawing on our forensic engagements, we analyse the most common fraud typologies affecting Nigerian businesses today — from payroll manipulation to procurement collusion — and what proactive controls can prevent them.
February 2025

Tax Advisory

IFRS S1 & S2: A Practical Readiness Guide for Nigerian and UK Businesses
Sustainability reporting standards are no longer optional for forward-thinking organisations. We outline exactly what IFRS S1 and S2 require, the timeline for adoption, and the steps businesses should be taking now.
January 2025

Financial & Management Consulting

Why Every Business Should Consider Business Process Design and Optimisation
Poorly designed processes are among the most expensive and least visible liabilities on any organisation's balance sheet. This extensive guide examines what business process design and optimisation really involves, why it matters, and how to do it right.
April 2025

More Insights Coming Soon

Gravitus Professional Services regularly publishes insights, commentary, and technical updates across our five service lines — internal audit, forensic accounting, accounting and tax advisory, financial and management consulting, and escrow services. To be notified when new articles are published, or to request a topic-specific briefing, contact us at info@gravitus.org.

Gravitus Professional Services — Insights & Perspectives
Why Every Business Should Consider Business Process Design and Optimisation

The Hidden Cost of Broken Processes

Every organisation has processes. The question is never whether processes exist — it is whether they are designed deliberately or have simply evolved by accident. In the vast majority of businesses we work with, the honest answer is the latter. Processes have grown organically over years, shaped by individual habits, historical workarounds, legacy technology constraints, staff turnover, and the accumulated weight of decisions that made sense at the time but have never been revisited. The result is a silent, pervasive cost that rarely appears as a line item but is felt every day — in the time wasted chasing approvals, in the errors that slip through because no one owns a particular step, in the customer who waits too long, and in the talented employee who spends half their working day on tasks a well-designed system could eliminate entirely.

Research consistently demonstrates that organisations operating with poorly designed or unoptimised processes spend between 20% and 30% of their revenue on the cost of poor quality — rework, errors, delays, duplication, and waste. For a business generating ₦500 million in annual revenue, that represents up to ₦150 million in avoidable costs. These are not abstract figures. They are the salaries of people doing work twice, the cost of expediting delayed deliveries, the regulatory penalties incurred because a compliance process failed at a critical step, and the lost revenue from customers who chose a competitor because your onboarding process was too slow or too painful.

Business process design and optimisation is the discipline that addresses these costs directly, systematically, and sustainably. It is not a luxury for large corporations. It is a strategic imperative for any organisation that intends to grow, scale, compete, or simply survive in an environment where operational efficiency is increasingly a differentiator.

What Business Process Design and Optimisation Actually Means

Business process design refers to the deliberate creation or restructuring of the sequence of activities, decisions, information flows, and responsibilities that collectively produce an output — whether that output is a product, a service, a report, an approval, or a customer interaction. Process optimisation refers to the ongoing refinement of existing processes to eliminate waste, reduce variation, improve reliability, and align performance with organisational objectives.

These two disciplines are deeply related but distinct. Design is fundamentally about architecture — asking what a process should look like if built from scratch with current knowledge, technology, and objectives. Optimisation is about improvement — asking how a process that already exists can be made to perform better within its current or modified structure. In practice, most organisations need both: a willingness to redesign processes that are fundamentally broken, and a continuous improvement discipline to keep well-designed processes performing at their best as conditions change.

It is important to distinguish business process design from systems implementation. Many organisations make the mistake of purchasing enterprise software — an ERP system, a CRM platform, a workflow tool — in the expectation that the technology will fix the process. It will not. Technology automates and accelerates whatever process it is given. If the underlying process is poorly designed, technology will automate the inefficiency at greater speed and scale. The process must be designed first. The technology serves the process — not the other way around.

The Business Case: Why This Cannot Wait

The urgency of business process optimisation is driven by several converging forces that are reshaping the competitive environment for Nigerian and UK-based businesses simultaneously.

Customer expectations have fundamentally shifted. Digital-native businesses — fintechs, e-commerce platforms, logistics aggregators — have reset customer expectations around speed, transparency, and simplicity. A customer who can open a bank account in five minutes on their phone has no patience for a corporate supplier whose onboarding process takes three weeks and requires seventeen documents. This is not a fintech problem. It is a business process problem. Customers in every sector are now benchmarking their experience against the best digital experience they have had anywhere, and organisations whose processes cannot compete are losing business to those whose can.

The cost of talent is rising. In an environment of increasing wage pressures and intensifying competition for skilled professionals, organisations cannot afford to deploy expensive human capital on low-value, repetitive, process-driven tasks that could be eliminated or automated through better process design. Retaining talented people requires giving them meaningful, value-adding work. A finance professional who spends 60% of their time reconciling spreadsheets that a well-designed system could reconcile automatically is an expensive, underutilised, and increasingly disengaged asset.

Regulatory and compliance requirements are multiplying. The volume and complexity of regulatory obligations facing Nigerian and UK businesses — from tax reporting requirements, to data protection obligations, to sector-specific regulatory frameworks — continues to grow. Compliance that depends on manual processes, individual memory, or informal conventions is inherently fragile. A single staff departure, a misunderstood instruction, or a busy period can result in a missed filing, a breach of obligation, or a regulatory penalty. Systematic, designed processes with clear ownership, embedded controls, and documented procedures are the only reliable foundation for sustainable regulatory compliance.

Scalability requires process maturity. Growth is the aspiration of virtually every business. But growth without process maturity is operationally destabilising. An organisation that processes one hundred transactions a month through an informal, people-dependent process will not simply process ten thousand transactions a month by hiring more people. It will collapse under the weight of inconsistency, errors, and coordination failures. Scalable growth requires scalable processes — and scalable processes must be designed, not evolved. The businesses that scale successfully are almost always those that have invested in process architecture before they needed it, not in response to the crisis that growth without process infrastructure inevitably creates.

Margin compression demands efficiency. In most sectors, the era of easy margin is over. Input costs — energy, logistics, raw materials, labour — are rising. Pricing power is constrained by competition. In this environment, operational efficiency is no longer a secondary concern. It is a primary driver of profitability. The organisations that will sustain and grow their margins over the next decade will be those that can deliver the same or better outputs with fewer resources — and that capability is built through deliberate process design and relentless optimisation.

Where Process Problems Hide

In our consulting engagements, we find that process problems are consistently concentrated in a small number of areas that are worth examining in any organisation.

The procure-to-pay cycle is one of the most universally problematic processes in Nigerian organisations. Purchase requisitions that require multiple approvals with no defined timelines, vendor onboarding processes that take weeks and require the same information in multiple formats, invoice processing that involves manual data entry and physical routing of documents, and payment authorisation frameworks that are designed for fraud prevention but have been implemented in ways that create month-long payment delays — these are not unusual findings. They are the norm. The cumulative impact on supplier relationships, cash flow predictability, and finance team capacity is significant.

The customer onboarding and service delivery process is equally fertile ground for waste. Organisations frequently underestimate how much friction exists in their customer-facing processes — information requested multiple times, handoffs between teams that are poorly defined and inconsistently executed, service level commitments that are made without the process infrastructure to support them, and complaint resolution paths that are unclear to both staff and customers. Every point of friction in a customer-facing process has a direct cost: some customers absorb it, some complain, and some simply leave.

Financial close and reporting processes are a consistent source of pain for finance functions across sectors. Monthly close processes that take two or three weeks, requiring heroic effort from the finance team and delivering results that are already partially stale by the time they reach management, are the product of poorly designed data flows, inadequate integration between operational and financial systems, and manual reconciliation processes that have never been examined critically. A well-designed financial close process should be achievable in five working days or fewer for most organisations. Many are operating at two or three times that.

Human resources and people management processes — recruitment, onboarding, performance management, learning and development, exit management — are frequently among the most under-designed in an organisation, despite being directly connected to talent retention, organisational culture, and legal compliance. An onboarding process that leaves a new hire's first week characterised by confusion, missing equipment, and unclear expectations is not a minor inconvenience. It is a statement about the organisation's operational maturity that talented people remember.

Information and document management represents another ubiquitous source of waste. Organisations where critical documents exist in multiple versions across personal drives, email attachments, and shared folders; where knowledge is concentrated in individuals rather than captured in systems; and where decisions are made and promptly forgotten because there is no process for recording and communicating them — these organisations are paying a daily tax on their disorganisation that is invisible on the profit and loss account but entirely real in its impact on productivity, quality, and risk.

The Methodology: How Good Process Design Works

Effective business process design and optimisation is a structured discipline with a clear methodology. While different consulting frameworks use different terminologies, the core stages are consistent.

Stage 1: Process Discovery and Documentation. Before a process can be improved, it must be understood as it actually operates — not as it is supposed to operate, not as management believes it operates, but as the people who execute it every day actually experience it. This requires direct engagement with process participants through structured interviews, observation, and process walk-throughs. The output is an accurate, current-state process map that documents each step, decision point, responsible party, input, output, system used, and the time each step takes. This stage consistently reveals surprises. Processes that appear simple at the executive level almost invariably contain hidden complexity, informal variations, and undocumented workarounds at the operational level.

Stage 2: Process Analysis and Waste Identification. The current-state map is then analysed systematically to identify waste — defined broadly as any activity that consumes resources without adding value to the customer or the organisation. The Lean framework identifies seven classic categories of waste: overproduction, waiting, unnecessary transportation, over-processing, excess inventory, unnecessary motion, and defects. In a service or knowledge-work context, these translate into activities such as producing reports that are never read, approval queues that create delays without adding control value, data re-entry between systems that could be integrated, and rework caused by errors introduced earlier in the process. Each identified waste is quantified where possible — in time, cost, or error rate — to provide a factual basis for prioritising improvement opportunities.

Stage 3: Root Cause Analysis. For each significant waste or performance gap identified, root cause analysis is conducted to understand why the problem exists. The most common root causes of process problems are: unclear ownership (no one is accountable for the end-to-end process performance); inadequate or missing controls at key risk points; poor system integration forcing manual workarounds; insufficient training or documentation causing inconsistent execution; process designs that were never updated to reflect changes in volume, regulation, or organisational structure; and performance metrics that measure activity rather than outcomes, creating incentives that are misaligned with process objectives. Root cause analysis prevents the common and expensive mistake of implementing solutions that address symptoms rather than causes.

Stage 4: Future-State Design. With a clear understanding of current-state performance and root causes, the future-state process is designed. This is a creative as well as analytical exercise. The question is not simply how to fix what is broken, but how to design the best possible process given current knowledge, available technology, and organisational objectives. Future-state design considers: which steps add genuine value and must be retained; which steps can be eliminated entirely; which steps can be simplified, standardised, or combined; which decision points can be delegated to lower levels with appropriate guardrails; which activities can be automated or digitised; and how controls can be embedded into the process design itself rather than added as external checks that slow execution.

Stage 5: Implementation Planning and Change Management. A well-designed future-state process that is not successfully implemented delivers no value. Implementation planning covers: the sequencing of process changes (some changes can be made immediately; others require system changes, training, or structural adjustments); the identification of quick wins that build momentum and demonstrate value early; the communication strategy for engaging the people affected by the changes; the training and capability building required to equip staff to operate the new process consistently; and the governance arrangements for managing the transition, resolving issues, and sustaining the changes after the initial implementation period.

Stage 6: Performance Measurement and Continuous Improvement. Process optimisation is not a one-time event. It is an ongoing discipline. Effective process governance requires: clearly defined process performance metrics aligned to business objectives; regular monitoring of actual performance against targets; a structured mechanism for capturing and evaluating improvement ideas from the people who operate the process daily; and periodic formal reviews to assess whether the process remains fit for purpose as the organisation, its customers, and its operating environment evolve. The organisations that derive sustained competitive advantage from their process capability are those that have built a culture and a system of continuous improvement — not those that have conducted a single optimisation project and declared victory.

The Role of Technology in Process Optimisation

Technology is an enabler of process optimisation — a powerful one — but it is not a substitute for process design. With that principle firmly established, the range of technology tools available to support process optimisation has expanded dramatically, and organisations that fail to leverage appropriate technology in their processes are operating at a systematic disadvantage.

Workflow automation and business process management (BPM) platforms allow organisations to digitise and automate structured processes — routing approvals, triggering notifications, enforcing deadlines, and maintaining complete audit trails — at a fraction of the cost they required a decade ago. Tools in this category are now accessible to medium-sized businesses that would previously have considered them enterprise-only solutions.

Robotic Process Automation (RPA) enables the automation of repetitive, rule-based tasks that currently require human intervention — data extraction, form completion, reconciliation, report generation — without requiring changes to the underlying systems. RPA is particularly valuable in organisations with legacy systems that cannot be easily integrated, and in finance functions where significant volumes of manual data processing persist.

Data analytics and process mining tools can analyse event logs from operational systems to reconstruct actual process flows, identify bottlenecks, quantify delay times, and detect compliance deviations — providing an evidence base for process improvement that was previously unavailable without intensive manual observation. These tools are increasingly accessible and provide a level of process insight that transforms the quality of optimisation decisions.

Enterprise resource planning (ERP) and integrated business systems remain the foundational technology for process integration in larger organisations. The key insight is that ERP implementation should follow process design — organisations that configure their ERP around their existing, poorly designed processes miss the primary benefit of the investment. A well-run ERP implementation is preceded by a process redesign that the ERP then supports and enforces.

Process Optimisation in the Nigerian Business Context

The opportunity for business process optimisation in the Nigerian market is, if anything, larger than in more mature markets — because the baseline is lower and the competitive advantage to be gained from operational excellence is therefore greater. Organisations that successfully design and optimise their processes in the Nigerian market are not simply catching up with a global standard. They are creating a genuine competitive moat in an environment where process excellence is genuinely rare.

There are also several Nigeria-specific process challenges that deserve particular attention. Multi-layered approval cultures — where decisions that could be made at the operational level are routinely escalated to senior management, creating bottlenecks and disempowering capable staff — are endemic in many Nigerian organisations and represent one of the most significant sources of avoidable delay. Addressing this requires both process redesign (establishing clear decision rights and delegation frameworks) and cultural change (building management confidence in empowered execution at the operational level).

Cash and payment process complexity in an environment where multiple payment modalities coexist — cash, bank transfer, mobile money, cheque — and where banking infrastructure can be unreliable, requires more deliberate process design than equivalent processes in markets with more uniform payment infrastructure. Organisations that design their payment and collection processes specifically for the Nigerian context — rather than adopting generic templates — consistently achieve better results.

Regulatory compliance processes in Nigeria are complicated by the number of regulatory bodies with overlapping and sometimes inconsistent requirements, and by the frequency with which regulatory frameworks change. Organisations that design their compliance processes to be adaptable — with clear ownership, documented procedures, and regular review cycles — are better able to absorb regulatory change without operational disruption than those that treat compliance as an informal, people-dependent activity.

Measuring the Return on Investment

One of the most common objections to investing in business process design and optimisation is the perceived difficulty of measuring the return. In our experience, this concern is overstated. The return on a well-executed process optimisation programme is typically measurable across several dimensions.

Cost reduction is the most directly quantifiable benefit. Reduced rework, lower error rates, elimination of redundant activities, reduced overtime, and lower compliance costs all translate directly to the profit and loss account. In our engagements, we consistently identify cost reduction opportunities equivalent to 15% to 25% of the cost base of the processes under review.

Revenue enhancement is less obvious but equally real. Faster customer onboarding means faster revenue recognition. Improved service reliability means higher customer retention. Shorter lead times mean the ability to win business that slower competitors cannot. A well-designed sales and order management process can directly increase conversion rates and average order values.

Risk reduction — the avoidance of regulatory penalties, fraud losses, contractual breaches, and reputational damage — has a value that is difficult to quantify precisely but is entirely real. The cost of a single significant compliance failure frequently exceeds the entire cost of the process optimisation programme that would have prevented it.

Staff capacity and morale improvements are harder to put a number on but are consistently reported as among the most valued outcomes of process optimisation engagements. People who spend less time on frustrating, low-value, process-driven tasks and more time on meaningful work are more engaged, more productive, and more likely to stay.

A reasonable rule of thumb, based on our experience across multiple sectors and organisation sizes, is that a well-executed process optimisation programme delivers a return of between three and eight times its cost within the first twelve months of implementation, with ongoing annual returns thereafter as the improved processes continue to perform.

Where to Start

The most common barrier to starting a process optimisation programme is not lack of awareness of the need — most leaders know their processes are not where they need to be — but uncertainty about where to begin. The answer is almost always the same: start with the process that causes the most pain, costs the most money, or creates the most risk. You do not need to redesign your entire organisation at once. A well-scoped, well-executed optimisation of a single high-impact process — the procure-to-pay cycle, the financial close, the customer onboarding journey, the payroll process — will generate enough value and enough organisational confidence to build momentum for the programme.

The key is to begin with clarity of objective, rigour of methodology, and genuine commitment to implementation. Process maps that sit in a consultant's report and are never acted upon are a cost, not an investment. The value is in the implementation — in the changed behaviour, the redesigned system, the embedded control, the empowered team, and the improved outcome that follows from the work.

How Gravitus Professional Services Can Help

Our Financial and Management Consulting practice includes a dedicated Business Process Design and Optimisation capability, delivered by practitioners with experience across banking and financial services, insurance, manufacturing, retail, logistics, professional services, and the public sector in both Nigeria and the United Kingdom.

We offer end-to-end process transformation engagements — from current-state discovery and analysis through to future-state design, implementation support, and performance measurement framework development. We also offer targeted rapid process reviews for organisations that need to identify and act on their highest-priority process improvement opportunities quickly, as well as process health-check diagnostics that provide an independent assessment of process maturity across an organisation's core functions.

Our approach is practical, evidence-based, and implementation-focused. We do not produce reports that sit on shelves. We work alongside your team to design processes that are right for your organisation, your sector, and your operating context — and we stay engaged through implementation to ensure that the designed improvements are actually realised. Contact us at info@gravitus.org to discuss how we can help your organisation unlock the value that better-designed processes can deliver.

April 2025  •  Financial & Management Consulting  •  Gravitus Professional Services