Sometimes, merely identifying risk is not enough. Issues often are systemic and masked by years of temporary fixes; and, mitigation can require specific expertise. Whatever the case, PYA’s experienced IT security team is prepared to perform customized, scalable, and affordable engagements. Our risk-based approach provides trusted evidence and detailed action plans. Whether you are addressing Gramm-Leach Bliley Act (GLBA), Information Technology General Controls (ITGC), or American Land Title Association (ALTA) Pillar 3, PYA goes beyond the use of standardized checklists to analyze critical system technology controls when evaluating the safety of your data.
Information Technology General Controls
Helping organizations address the overall operation and activities of the IT function and its management and governance. We identify and assess general controls throughout your organization’s IT infrastructure to help you gain a better understanding of the IT control environment.
Gramm-Leach Bliley Act
Assisting agents with GLBA compliance. Enacted to control the ways that financial institutions deal with the private information of individuals, the Act includes three main areas: regulating the collection and disclosure of private financial information, stipulating that financial institutions implement security programs to protect such information, and prohibiting the practice of pretexting (accessing private information using false pretenses).
Financial Information Technology General Controls Assessment (Supporting Financial Assessment Services)
Providing a thorough review and analysis of prior attestations—a gap analysis before attestation to identify potential “red flags.”
Assessing your network—via focused assessments using social engineering and wire fraud prevention—to identify areas of vulnerability that could lead to security breaches, stiff fines, and reputation loss.
Wireless Network Assessment
Utilizing leading-edge technology, including radio spectrum equipment, to ascertain the security of your wireless network.
Data Center Assessment
Providing completely independent assessments (specific or broad) of your data center, including a review of existing security, reliability, and points of failure; evaluating growth, floor space, power, and cooling needs. PYA assesses and evaluates storage and processing inefficiencies to build a roadmap that optimizes performance to support clients’ business objectives in a secure and protected environment.
Disaster Recovery Assessment
Evaluating and testing the comprehensiveness of the client’s readiness to implement and sustain recovery and business continuity procedures. Rather than provide a list of addressable concerns, PYA offers practical mitigation recommendations that align with clients’ business goals and budget requirements.