FFIEC, FDIC, GLBA, NCUA

Financial institutions are required to comply with a variety of regulations which are enforced by multiple authorities. Complying with the requirements in regulations like FFIEC, FDIC IT-RMP, GLBA, NCUA and PCI DSS is a daunting challenge.

Solutionary Managed Security Services and Security Consulting Services help financial institutions to cost-effectively comply with financial industry requirements.

Solutionary services help financial services firms to:

Assess and Measure Gaps Consistent objective rating methodology; prioritized and actionable recommendations; peer benchmarking; experienced certified security experts.
Remediate and Enhance Experienced certified security experts; security program, policy, and procedures design, services, tools, and process implementation.
Execute and Monitor Compliant log management, log monitoring, vulnerability management, security device management, and financial services specific offerings customized for branches and ATMs.
Demonstrate Compliance Standard and customizable reporting; secure evidence repository for all compliance related assessments, results, and reports; integrated ticketing with assignment, tracking, and journaling.

 

Compliance Activity Solutionary Services / Capabilities Regulatory Mapping
Assess compliance state; Measure gaps from regulations Security Consulting Services; PCI Qualified Security Assessors (QSAs)

GLBA Safeguards Rule; Financial Privacy Rule;

Pre-texting Protection;

FFIEC Audit; BCP; eBanking;

InfoSec examination books;

FDIC IT-RMP;

NCUA;

PCI DSS – See PCI DSS Compliance

Remediate findings; Enhance security and compliance program Security Consulting Services; Authorized partner consulting services; PCI Qualified Security Assessors (QSAs)

GLBA Safeguards Rule;

FFIEC Audit; BCP; eBanking; InfoSec examination books;

FDIC IT-RMP; NCUA; PCI DSS – see PCI DSS Compliance

Execute and monitor security and compliance program Log Management; Log Monitoring; Vulnerability Management; PCI Authorized Scanning Vendor (ASV): Security Device Management

15 of the GLBA Safeguards Rule requirements

25 of the FFIEC Audit, BCP, eBanking and InfoSec Book requirements

10 of the FDIC IT-RMP requirements

7 of the NCUA 748 Requirements

PCI DSS – See PCI DSS Compliance

Demonstrate compliance with regulations Log Management; Security and Compliance Reporting

5 of the GLBA Safeguards Rule requirements;

7 of the FFIEC Audit, BCP, eBanking and InfoSec Book requirements;

1 of the FDIC IT-RMP Requirements; 1 of the NCUA 748 requirements;

PCI DSS – See PCI DSS Compliance

Solutionary has:

  • Comprehensive knowledge regarding information security requirements for financial institutions
  • Financial services specific offerings customized for branches and ATMs
  • Proven managed security and consulting services
  • A long history as a PCI approved scanning vendor (ASV)
  • A long history as a qualified security assessment company (QSAC)
  • Certified security experts (CISSP, CISA, CISM, GCIA, CSOA, QSA, HITRUST CSF and others)

Solutionary services to support GLBA, FFIEC, FDIC IT-RMP, NCUA and PCI DSS compliance include:

 

What's New

Blog: “Battle Ready" Your Critical Incident Response Team Members

Blog: Times Have Changed: A Firewall Log is No Longer a Firewall Log

White Paper: How Malware Analysis Benefits Incident Response