IT Security Assessments
Nearly all regulatory guidelines (GLBA, FFIEC, HIPAA, FDIC, OTS, OCC, etc.) require require organizations to conduct third-party assessments of their information systems to protect against unauthorized disclosures, misuse, alteration, or destruction of confidential information. Our Assessments include: vulnerability testing and evaluations of social engineering, firewalls, wireless, malware protection, & security best-practices.
Risk Assessments
In order to identify reasonably foreseeable risks that could lead to service interruption or unauthorized disclosure, misuse, alteration, or destruction of confidential information, regulatory guidelines (GLBA, FFIEC, HIPAA, FDIC, OTS, OCC, etc.) require organization to conduct periodic Risk Assessments.
Controls Audits
Organizations regulated by GLBA, FFIEC, HIPAA, FDIC, OTS, and the OCC are required to conduct independent audits of their Information Security Program on a periodic basis. BAI Security's Controls Audit verifies an organization's security controls against standards developed by the FFIEC and other international standards.