ATTUS Technologies
1-888-494-8449

Free IT Security Consultation

submit

Annual Mandatory GLBA Compliance Testing

External Penetration Testing for Your Institution.

more

GLBA Compliance Newsletter

FREE monthly newsletter for the latest GLBA compliance news.

more

GLBA Risk Assessment

Learn more about GLBA requirements.

more

Regulatory Compliance Services

For your GLBA, BSA and FFIEC demands.

more

Compliance Assessments

Since 2002, ATTUS’ Risk and Information Security Consulting (RISC) Services group has brought knowledge, expertise and reliability to every client relationship. With their extensive industry credentials and attention to detail, our RISCS consultants are here to partner with your financial institution to meet your Gramm-Leach-Bliley Act (GLBA), Bank Secrecy Act (BSA) and Red Flag Rules compliance.

All RISC Services Solutions provide:

  • A thorough assessment and investigation of the areas being explored
  • The use of sophisticated technology and intuitive manual techniques for a comprehensive approach
  • Detailed reports with a full account of the service provided, the results and our experts’ recommendations for mitigating identified and foreseeable risks
  • Industry experts who engage your institution’s representatives to establish communication and trust before, during and after the service

For your GLBA, BSA and FACT Act Compliance:


Information Security Review 

Giving you greater assurance that your information security program is in compliance with the Gramm-Leach-Bliley Act, our Information Security Review:

  • Encompasses all electronic and paper based information
  • Helps you identify known or foreseeable threats to your information security program
  • Ensures you are current and effective at keeping your confidential information protected from potential threats

BSA Audit

Our consultants ensure compliance with Bank Secrecy Act, OFAC and other anti-money laundering laws and regulations by:

  • Conducting an extensive on-site review of all your written policies and procedures
  • Assessing adequacy of your CTRs, SARs, CIP, CDD and your employee training program
  • Providing our BSA/AML risk assessment tool for your use

External Penetration Testing

Performs GLBA-required annual testing of your network defenses to protect your institution and its confidential information. We assess:

  • Your perimeter’s defenses: firewalls, routers, web servers, mail services, etc.
  • Any of your system's weaknesses by applying a vulnerability scan
  • Your overall security system through a thorough post-test report

Social Engineering Testing

Heightens your awareness of the methods and motives of external attackers. To evaluate GLBA compliance, our consultants:

  • Test the porosity of everyday tools used by your employees (email, phone, internet)
  • Attempt to solicit confidential information through those tools
  • Help to educate your employees on appropriate reactions to requests for confidential information

Red Flag Review Service

This review helps ensure that your Identity Theft Prevention Program encompasses the key elements of the FACT Act’s Red Flag Rules. Includes:

  • Helping ensure your covered accounts, and the appropriate red flags for them, have been properly identified
  • Assessing the effectiveness of your institution’s defined responses to red flags
  • Determining if your institution is properly administering its program

IT Audit

Provides a qualitative and comprehensive review and analysis of the major FFIEC recommended IT areas to identify and mitigate foreseeable risks jeopardizing your GLBA compliance.

  • In-depth preliminary research to gain a sound understanding of your personnel and systems
  • An exhaustive on-site examination of your information system controls and procedures
  • A three tiered audit report that summarizes priorities for senior management, details implementation tasks for IT department and provides a current snapshot of your entire system

Website Comply

Per FFIEC Guidance, Website Comply will verify that your website meets applicable regulatory standards. We’ll verify the existence of four key elements of your site:

  • Clear, conspicuous and accurate content
  • Appropriate record retention
  • Required disclosures and customer notices
  • Specific requirements for all applicable regulations

iScan

For your GLBA risk assessment, our Remote Internal Vulnerability Assessment is cost effective and easy to use. In addition to scanning your hardware and software the iScan will:

  • Conduct LAN sweeps and perform internal vulnerability, patch management and port scanning
  • Lower the cost of your comprehensive internal scan
  • Provide a detailed report with recommendations for securing your network

For more guidance on your Bank Secrecy Act (BSA), Gramm-Leach Bliley Act (GLBA) and FACT Act compliance, call us today at 888.494.8449.

Microsoft Certified Gold Partner SAS-70 Level 2 Certified

Contact Us   |   Privacy Policy  |    Site Map

© 2012 ATTUS Technologies, Inc.

BBB Accredited