FFIEC, FDIC, GLBA, NCUA

Financial institutions are required to comply with a variety of regulations which are enforced by multiple authorities. Complying with the requirements in regulations like FFIEC, FDIC IT-RMP, GLBA, NCUA and PCI DSS is a daunting challenge.

NTT Security services help financial institutions to cost-effectively comply with financial industry requirements. NTT Security services help financial services firms to:

Assess and Measure Gaps Consistent objective rating methodology; prioritized and actionable recommendations; peer benchmarking; experienced certified security experts.
Remediate and Enhance Experienced certified security experts; security program, policy, and procedures design, services, tools, and process implementation.
Execute and Monitor Compliant log management, log monitoring, vulnerability management, security device management, and financial services specific offerings customized for branches and ATMs.
Demonstrate Compliance Standard and customizable reporting; secure evidence repository for all compliance related assessments, results, and reports; integrated ticketing with assignment, tracking, and journaling.

 

Compliance Activity NTT Security Services / Capabilities Regulatory Mapping
Assess compliance state; Measure gaps from regulations Technical Consulting; PCI Qualified Security Assessors (QSAs)

GLBA Safeguards Rule; Financial Privacy Rule;

Pretexting Protection;

FFIEC Audit; BCP; eBanking;

InfoSec examination books;

FDIC IT-RMP;

NCUA;

PCI DSS

Remediate findings; Enhance security and compliance program Technical Consulting; Authorized partner consulting services; PCI Qualified Security Assessors (QSAs)

GLBA Safeguards Rule;

FFIEC Audit; BCP; eBanking; InfoSec examination books;

FDIC IT-RMP; NCUA; PCI DSS – see PCI DSS Compliance

Execute and monitor security and compliance program Log Management; Log Monitoring; Vulnerability Management; PCI Authorized Scanning Vendor (ASV): Security Device Management

15 of the GLBA Safeguards Rule requirements

25 of the FFIEC Audit, BCP, eBanking and InfoSec Book requirements

10 of the FDIC IT-RMP requirements

7 of the NCUA 748 Requirements

PCI DSS – See PCI DSS Compliance

Demonstrate compliance with regulations Log Management; Security and Compliance Reporting

5 of the GLBA Safeguards Rule requirements;

7 of the FFIEC Audit, BCP, eBanking and InfoSec Book requirements;

1 of the FDIC IT-RMP Requirements; 1 of the NCUA 748 requirements;

PCI DSS

NTT Security has:

  • Comprehensive knowledge regarding information security requirements for financial institutions
  • Financial services specific offerings customized for branches and ATMs
  • Proven managed security and consulting services
  • A long history as a PCI approved scanning vendor (ASV)
  • A long history as a qualified security assessment company (QSAC)
  • Certified security experts (CISSP, CISA, CISM, GCIA, CSOA, QSA, HITRUST CSF and others)

NTT Security services to support GLBA, FFIEC, FDIC IT-RMP, NCUA and PCI DSS compliance include:

What's New

Blog: New and Improved Dridex

Webinar: 2016 Global Threat Intelligence Report Review

White Paper: Defending Against Advanced Persistent Threats - Download