TrustCC, Information Security Consulting & Compliance

• Home
• Industries
  • Financial Services
  • Healthcare
  • Retail
  • Government
  • Service Providers
  • Public Companies
  • Higher Education
  • Professional Services
• Solutions & Services
  • IT Compliance
    • GLBA Compliance
    • HIPAA Compliance
    • SOX 404 Compliance
    • PCI DSS Security Preparedness
    • TG-3 PIN Security
  • IT Audit
    • General Controls Audit
    • FFIEC Audit
  • IT Security Testing
    • Comprehensive Security Assessment
    • Penetration Testing
    • Mainframe Security
  • IT Policy and Program
    • Information Security Risk Assessment
      
    • Incident Response
    • IT Security and Compliance Training
    • Business Continuity Planning
    • Policy and Procedure Development
• Resources
  • Articles
  • Checklists and Samples
  • Presentation Materials
  • Case Studies
    • Penetration Testing Case Study
    • Social Engineering and Phishing Case Study
    • Outsourced IT Audit Case Study
    • Policy Development Case Study
  • Partners
  • Useful Links
• Company Info
  • The TrustCC Advantage
  • Management Team
  • Security/Audit Vendor Due Diligence
  • TrustCC's Internal Controls
  • Client Demographics
  • Code of Ethics
  • Job Openings
  • Contact Us
• News & Events
  • News & Press
  • Seminars and Training

GLBA Compliance for Banks and Credit Unions

Are you worried that examiners might find multiple reasons to fine your bank or credit union for non-compliance with GLBA requirements? Wouldn’t you rather know before an examination that your organization has the proper controls in place to keep your information secure, avoiding any fines and possible embarrassments?

TrustCC provides banks and credit unions with targeted and scalable IT compliance assessment services designed specifically to achieve GLBA compliance. The TrustCC GLBA Compliance service takes the typical security assessment one step further by evaluating compliance with the administrative and physical control provisions of a regulation.

TrustCC’s Gramm Leach Bliley Act Compliance service is customized for your particular regulatory environment. For example, if the FDIC or a State agency is your primary regulator, your assessment could be specifically designed around the FDIC's exam process and exam documents. In this example the compliance assessment could be based upon the FDIC IT Officer's Questionnaire (which includes GLBA compliance) and the Tier One procedures from select FFIEC IT Examination Booklets.

Designed For:

• Exam Preparation: Banks and credit unions that want to evaluate overall compliance with GLBA guidelines in preparation for a regulatory examination.
• Board Reporting: Banks and credit unions that want to provide their Board (or Audit Committee) with a representation of their current state of information security and regulatory compliance.

What We Typically Provide:

• IT Security and Vulnerability Testing: A series of procedures designed to identify vulnerability and demonstrate threats.
• IT Audit Procedures: Procedures designed to evaluate compliance with technical, physical and administrative control provisions (safeguards) that are addressed by the GLBA regulatory environment.
• Comparative Analysis: TrustCC will provide you with a general comparison to other banks and credit unions so you know how you may be "measured" when examined by your regulators.

How You Benefit:

• Know Your Risks: You'll know where you have risk and will be able to prioritize your security and compliance initiatives to address matters of greatest priority.
• Know your Compliance Profile: You'll know your compliance exceptions in advance of a regulatory examination so you can address them and/or be prepared to accept related risks.
• Experience: You can be assured that the TrustCC team is competent and experienced in the services we provide.