NETBankAudit - Cyber Audit Specialists Assessement Services   
Information Security Risk Assessment
and IT Audit Specialists
 
Home
Company
       º About NETBankAudit
       º Management
       º Staff
Services
       º External Testing
       º IT Vulnerability
       º Internet Banking Risk
       º GLBA Info Risk
       º IT Audit
       º BC & DR Planning

Articles & Info

Regulations

Contact Info

About NETBankAudit

NETBankAudit specializes in providing FFIEC and GLBA compliant Information Technology (IT) Vulnerability Assessments, Enterprise-wide Information Risk Assessments and Information Technology (IT) Audits to community financial institutions. We have hundreds of clients supported by our services in 26 states. We attribute our growth to superior service, a clear understanding of our client's needs, affordable pricing and development of happy clients and regulators. 

NETBankAudit started in 2000 offering financial institutions the ability to audit and test their network security architecture and policy and procedures. Our Information Security Vulnerability Assessment, Risk Assessment and IT Audit services provide access to senior talent in both the technical and regulatory aspects of your business. Our associates have unmatched expertise and knowledge of best practices and regulatory requirements due to prior experience as senior bank regulatory officials and financial technology consultants. We maintain relationships with all FFIEC agencies, including FDIC, FRB, OCC, OTS and NCUA and industry trade associations to stay abreast of new requirements, best practices, and current thinking by the regulators. 

Specific Offerings include: 

1. External Penetration Testing - a complete test and review of your external security position. This not only includes a "pen test" of your existing security but also research of the Internet for evidence of hacker related information about your organization and a complete review of your test results by a CISSP or CISA. 

2. IT Vulnerability Assessment - a complete IT vulnerability and penetration analysis of your information systems, from both an external and internal position. This can also include a review of your IT Security Policy and Procedures providing a gap analysis against both FFIEC guidelines and industry standards. This is an excellent service to supplement your internal GLBA risk assessment or IT audit efforts. We will insure that a CISSP and/or CISA evaluate the results of our findings. 

3. Information Security Risk Assessment - a full, enterprise-wide analysis and assessment of your institution's information security program as required by GLBA and defined by FFIEC guidelines, including internal and external penetration testing and complete regulatory compliance review. 

4. IT Audit - focusing on the effectiveness of existing controls relative to internal policies and procedures, risk management objectives, and regulatory compliance. The process for conducting an audit is based upon the key control expectations identified in the FFIEC's IT Audit Booklet and COBIT standards. We include internal and external vulnerability testing as standard in our IT Audit. 

5. Information Security Compliance - an analysis of your institutions regulatory compliance with policy and procedure for one or more of GLB, SOA, Patriot Act, and or FFIEC (Information Security, Business Continuity, IT Audit, Electronic Banking, and FedLine). 

6. Business Continuity and Disaster Recovery Planning - assisting our clients to address the new requirements outlined in the FFIEC's Business Continuity Planning Booklet. 

Why NETBankAudit?  

NETBankAudit was designed and developed to exclusively support the GLBA/FFIEC IT Regulatory Audit and Assessment needs of community financial institutions.

NETBankAudit only works with community financial institutions
  • We specialize in GLBA/FFIEC audits and assessments
  • We specialize in helping our clients become and remain GLBA/FFIEC compliant
We are not like our competitors
  • Accounting firms generally do not have the technical and engineering expertise needed
  • Technical firms generally do not have the regulatory and audit expertise needed

NETBankAudit is completely independent of other products and services

  • NOTE: The FFIEC IT Audit Booklet, in the "Outsourcing Internal IT Audits" section states, "Potential conflicts of interest may arise if the outsourced auditing firm performs IT Audit functions in addition to other audit services, such as: Providing the independent financial statement, or serving in an IT or management consulting capacity. "
NETBankAudit employees are superior
  • Community financial institutional experience
  • Security engineering experience
  • Regulatory experience and expertise
  • All NETBankAudit engineers and auditors are full time employees (no subcontracting)
  • All NETBankAudit employees have applicable certifications (CISSP, CISA, etc.)
  • NETBankAudit performs background checks on all its employees


Download NETBankAudit Brochure
   NETBankAudit Brochure
© 2005-06 NETBankAudit. All rights reserved.