IT Assurance
Our Information Technology auditors have a detailed knowledge of FFIEC IT guidelines and audit procedures.
Our IT or Compliance Auditors or our IT partners will provide the following information Security services:
— IT Risk Assessment
Review of technology threats, vulnerabilities and controls to determine where risks are in your institution.
— Information Privacy Review
Review of your institution's Comprehensive Information Security Program to determine
compliance with federal privacy laws.
— Application Security Review
Review of application software set up for issues concerning user accounts, password restrictions and user access privileges, etc.
— Internal Network Security Review
Scan of network to detect inconsistent security set-ups.
— Independent Network Perimeter Testing
Testing and evaluation of controls over perimeter devices such as firewalls and
routers, which separate an organization's internal system from the outside
world.
— Social Engineering Assessment
Assessment of your organization's Information Security awareness and if necessary, the development of an awareness training program.
— Business Continuity Planning (BCP)
Detailed review of your organization's BCP including disaster recovery and incident
response procedures to determine if your organization is able to effectively
respond to an emergency situation.
— Policy and Procedure
Development
The development and implementation of comprehensive Information Security policies and procedures designed to protect against identified risks.
— Internal Audit IT Support
Assistance to your Internal Audit Department in assessing technology related risks and providing Internal Auditor Training.
Let our IT auditors and consultants assist your employees to develop practical solutions to your IT issues.