TrustCC, Information Security Consulting & Compliance

• Home
• Industries
  • Financial Services
  • Healthcare
  • Retail
  • Government
  • Service Providers
  • Public Companies
  • Higher Education
  • Professional Services
• Solutions & Services
  • IT Compliance
    • GLBA Compliance
    • HIPAA Compliance
    • SOX 404 Compliance
    • PCI DSS Security Preparedness
    • TG-3 PIN Security
  • IT Audit
    • General Controls Audit
    • FFIEC Audit
  • IT Security Testing
    • Comprehensive Security Assessment
    • Penetration Testing
    • Mainframe Security
  • IT Policy and Program
    • Information Security Risk Assessment
      
    • Incident Response
    • IT Security and Compliance Training
    • Business Continuity Planning
    • Policy and Procedure Development
• Resources
  • Articles
  • Checklists and Samples
  • Presentation Materials
  • Case Studies
    • Penetration Testing Case Study
    • Social Engineering and Phishing Case Study
    • Outsourced IT Audit Case Study
    • Policy Development Case Study
  • Partners
  • Useful Links
• Company Info
  • The TrustCC Advantage
  • Management Team
  • Security/Audit Vendor Due Diligence
  • TrustCC's Internal Controls
  • Client Demographics
  • Code of Ethics
  • Job Openings
  • Contact Us
• News & Events
  • News & Press
  • Seminars and Training

Public Companies

SOX Compliance for Public Companies

The Sarbanes-Oxley Act of 2002 (SOX) imposes significant control requirements over financial reporting with the goal of minimizing fraud and providing transparency to shareholders. Specifically, SOX holds executives of publicly held companies responsible for the accuracy of financial information issued and the strength of their internal financial controls.

In every organization the internal control structure is heavily reliant on IT controls and validating reliance on IT controls. An organization’s control effectiveness is where TrustCC becomes an important partner for our clients.

Services TrustCC offers our public company industries clientele include:

SOX 404 Compliance Assessment
TrustCC documents and tests key IT controls related to financial reporting in order to ensure control effectiveness and provide management confidence prior to an external audit.
Vulnerability and Penetration Testing
TrustCC’s expert services provide the confidence that your information assets are adequately safeguarded. Such services cost-effectively demonstrate diligence and control to examiners, executive management, and the Board.
Comprehensive Security Assessment
Vulnerability testing within your organization needs to be much more than penetration testing alone. Technical, administrative, and physical security controls are tested and analyzed to determine the overall effectiveness of your information security program.
Mainframe Security
We want to help your organization design methodologies that ensure the security of your mainframes and the applications running on them while meeting regulatory requirements.
Information Security Risk Assessment
Our standards-based IT risk assessment justifies administrative, technical and physical security control selection and prioritizes and establishes security plans and budgets.
Business Continuity Planning
TrustCC offers a proven methodology for business continuity planning based on industry standards and best practice, changing technology, and practical experience.
Incident Response
Preparing for a security incident is one of the most difficult tasks an IT manager can perform. Our team is trained and certified in incident handling and response. Let us help you prepare to respond to the unknown and minimize organizational impact.
Policy and Procedure Development
Policies and procedures are cornerstone for information security and risk management in any organization. TrustCC will identify appropriate and manageable policies, standards and procedures for your organization.

For more information on TrustCC services for public companies contact Client Services.