TrustCC, Information Security Consulting & Compliance

• Home
• Industries
  • Financial Services
  • Healthcare
  • Retail
  • Government
  • Service Providers
  • Public Companies
  • Higher Education
  • Professional Services
• Solutions & Services
  • IT Compliance
    • GLBA Compliance
    • HIPAA Compliance
    • SOX 404 Compliance
    • PCI DSS Security Preparedness
    • TG-3 PIN Security
  • IT Audit
    • General Controls Audit
    • FFIEC Audit
  • IT Security Testing
    • Comprehensive Security Assessment
    • Penetration Testing
    • Mainframe Security
  • IT Policy and Program
    • Information Security Risk Assessment
      
    • Incident Response
    • IT Security and Compliance Training
    • Business Continuity Planning
    • Policy and Procedure Development
• Resources
  • Articles
  • Checklists and Samples
  • Presentation Materials
  • Case Studies
    • Penetration Testing Case Study
    • Social Engineering and Phishing Case Study
    • Outsourced IT Audit Case Study
    • Policy Development Case Study
  • Partners
  • Useful Links
• Company Info
  • The TrustCC Advantage
  • Management Team
  • Security/Audit Vendor Due Diligence
  • TrustCC's Internal Controls
  • Client Demographics
  • Code of Ethics
  • Job Openings
  • Contact Us
• News & Events
  • News & Press
  • Seminars and Training

Financial Services

GLBA Compliance

Technical advancement has afforded financial institutions tremendous opportunities to provide efficient and high levels of service to their business partners and clientele. At the same time, each opportunity presents its own set of unique risks and challenges in a constantly changing threat environment. Financial institutions are challenged to implement effective controls while managing existing and emerging regulatory requirements for information security and data privacy.

TrustCC understands these challenges. Our services are designed to keep management abreast of emerging risks and threats and to take the guesswork out of compliance. Our solutions are tailored specifically to the size and complexity of each institution with the goal of arming management with valuable information and practical guidance to manage inherent and compliance-based risks.

Services that TrustCC provides to our financial services clientele include:

GLBA Compliance Assessment
Banks and Credit Unions are required to comply with the Gramm-Leach-Bliley Act. Our assessment and gap analysis services are specifically designed to meet GLBA requirements and are customized for the size and complexity of your organization.
SOX 404 Compliance Assessment
Prior to an external audit, we document and test key IT controls relating to financial reporting. We want to ensure control effectiveness and provide management confidence within your organization.
TG-3 PIN Security Assessment
Depending on your ATM interbank network provider, you may be required to have the new TG-3 PIN Security Audit performed on a regular basis. TrustCC personnel are professionally certified and authorized to perform these audits.
Information Technology Audit
TrustCC provides co-sourced/outsourced IT audits that bring cost-effective expertise to Banks and Credit Unions. Audit procedures are scoped similar to exam procedures established by regulatory agencies such as the FDIC, FRB, OCC, OTS, and NCUA.
FFIEC Audit
Our audit programs are based on FFIEC examination procedures to help ensure that your organization is equipped with the necessary information to pass regulatory scrutiny.
Vulnerability and Penetration Testing
TrustCC’s expert services provide the confidence that your information assets are adequately safeguarded. Such services cost-effectively demonstrate diligence and control to examiners, executive management, and the Board.
Comprehensive Security Assessment
Vulnerability testing within your organization needs to be much more than penetration testing alone. Technical, administrative, and physical security controls are tested and analyzed to determine the overall effectiveness of your information security program.
Mainframe Security
We want to help your organization design methodologies that ensure the security of your mainframes and the applications running on them while meeting regulatory requirements.
Information Security Risk Assessment
Our standards-based IT risk assessment justifies administrative, technical and physical security control selection and prioritizes and establishes security plans and budgets.
Business Continuity Planning
TrustCC offers a proven methodology for business continuity planning based on industry standards and best practice, changing technology, and practical experience.
Incident Response
Preparing for a security incident is one of the most difficult tasks an IT manager can perform. Our team is trained and certified in incident handling and response. Let us help you prepare to respond to the unknown and minimize organizational impact.
Policy and Procedure Development
Policies and procedures are cornerstone for information security and risk management in any organization. TrustCC will identify appropriate and manageable policies, standards and procedures for your organization.

For more information on TrustCC services for financial services contact Client Services.