A CoNetrix Information Security Governance Audit will help you identify any gaps in your information security compliance program so you know where to focus your attention.
An Information Security Governance Audit is best for financial institutions that only need an audit of policies and procedures pertinent to information and cybersecurity.
If you need a full IT audit that includes technical security controls, then a better fit would be an IT Audit and Vulnerability Assessment.
A CoNetrix Information Security Audit is done remotely and covers the following key areas:
CoNetrix Security audit services are offered as three engagement levels to fit the needs of your institution. Add optional coverage to check additional controls, as needed.
|Information Security Governance Audit||Internal Vulnerability Assessment||Network Security Assessment||IT Audit & Vulnerability Assessment|
|Performed remotely or onsite auditor||Remote||Remote||Onsite||Onsite|
|Internal Vulnerability Scanning|
|Interviews With Client Staff|
|Active Directory Analysis|
|Data Collection with Onsite CoNetrix Toolbox|
|Analysis of Technical Security Controls|
|Application Security Controls Review (Core System, Online Customer Account System, Wire/ACH)|
|GLBA Information Security Program Audit|
|Cybersecurity Plans and Policies Audit|