Project Experience
Technology Compliance & Risk
Regulatory Alignment of Technology Controls
to achieve compliance with FFIEC, HIPAA, GLBA, COSO/SOX, and PCI for
the financial industry. Consolidation of regulations with one effective
design of controls.
Successfully completed SOX404 Audit and Mitigation for a complex technology model within a Financial Institution.
Development of a Data Classification Structure to assure data confidentiality and provide guidance on the storage, management, transfer and disclosure of information.
Development of a Security Governance Program to establishing governance, standards, controls and risk mitigation.
Design of a Technology Service Catalog
for the financial industry based on the established key configuration
items supporting critical business processes. Focus on the business
expectations on technology support or services.
Design, developed and implementation of an Outsourced Service Provider
methodology and process compliant with established FFIEC and SOX
regulations. Completely based on market standards and regulatory
guidelines.
|