BAI Security is a leading provider of IT Security, Assessment, and Compliance solutions for regulated industries. Services include vulnerability testing, penetration testing, evaluations of firewalls, wireless, social engineering, malware protection, compliance, risk, policies and procedures.

Controls Audits

Organizations regulated by GLBA, FFIEC, HIPAA, FDIC, OTS, and the OCC are required to conduct independent audits of their Information Security Program on a periodic basis. The BAI Security's Controls Audit verifies an organization's existing controls against specific compliance standards.

BAI Security provides the following key areas of review as part of our Controls Audits:

Management Oversight / Roles & Responsibilities

Development & Acqusition

Information Security

Operations

Outsourcing Technology Services / 3rd Party Vendor Selection

Supervision of Technology Partners

3rd Party Vendor Services

Business Continuity Planning (BCP) & Disaster Recovery / Pandemic Planning

BAI Security has developed multiple controls testing methodologies based on both industry standards as well as internal proprietary standards. These standards share the same methodology but differ in the exact scope of controls reviewed, as shown above, based on the particular compliance requirement.

Newsletter Sign-up

"“BAI has been top notch in all the projects we have worked on together so far. We evaluated and researched many security firms before establishing a relationship with BAI. BAI goes above and beyond every time we work together and is very customer focused." - CSO, Community Bank