ISO Support and Consulting Services

CoNetrix offers ISO support services to supplement your financial institution's information security officer role with knowledge, background, training, and independence specific to the financial industry.

The FFIEC defines the characteristics a financial institution's ISO role should possess as "sufficient authority, stature within the organization, knowledge, background, training, and independence to perform their assigned tasks". According to the FFIEC, the ISO role can be performed by multiple people in order to bring these characteristics together[1].

Rather than outsourcing the entire role in a virtual ISO fashion, Boost ISO solutions are designed to complement the information security capabilities your financial institution already maintains.

Incident Response

Financial institutions are required to have an incident response program in place to protect their customers in the event of an incident. The program must include appropriate procedures to identify, contain, and control an incident, notify appropriate personnel of a suspected incident, and follow all applicable laws and regulations. CoNetrix can help you create your Incident Response Program and walk you through the process to help ensure you follow regulations, take care of your customers, and protect your reputation.

Audit and Exam Assistance

Need help preparing for your next IT audit or exam? We can help you review, document, and organize relevant information before the auditors or examiners arrive. Our extensive experience, combined with our knowledge of technology, auditing, and banking, enables us to help you prepare. Additionally, when you receive the audit or exam report, we can help you respond.

Strategic Planning

Information technology and security strategic planning are key elements in developing a strong and secure technology base. CoNetrix has the banking knowledge, understanding of technology, and security experience to help you design and implement a short-term or long-term technology and security strategic plan.

Security Awareness Training

CoNetrix will provide your financial institution with online training courses to comply with the annual requirement to conduct security awareness training.

Annual Board Reporting

CoNetrix will facilitate the preparation and presentation of the financial institution's annual information security program status report as required by the FFIEC.

Supporting Security Services

CoNetrix can customize a solution to meet your technology, security, and compliance needs. Other services we can help with include:

Boost + Tandem

Part of this engagement is facilitated with a subscription to Tandem Policies.

Tandem Policies is an easy-to-use tool for managing your policies. Benefits include:

  • Employee Alert tool
  • Intuitive software
  • Ease of maintenance
  • Unlimited document storage
  • Anytime, anywhere accessibility
  • Multi-layered security

As a part of Boost Consulting, we will provide training and assistance with using the software.

The Tandem Policies module interfaces with the Tandem Risk Assessment module. By purchasing and using both modules, your risk assessment will already include your existing controls. Ask your account representative about risk assessment services.

Ready for the next step?