|
The Situation and
Challenge
A recent surge of
regulatory obligations have elevated the
attention information security has been
receiving by corporate executives over
the past two to three years. In a recent
survey conducted by the Financial
Executives Research Foundation (FERF)
and Computer Sciences Corporation (CSC),
managing information systems security
has moved into the number one area of
concern for top financial executives for
the first time in the survey’s seven
year history.
The reason for the increased focus of
executives is simple. The compliance
pendulum is now swinging away from “How
do I meet my obligations?” and towards
“How do I reduce the costs of meeting my
obligations.” But this question does not
have a simple answer. There are a
multitude of regulations. Most are quite
complex to understand and many of them
partially overlap each other. And a void
exists today for the cross-functional
expertise in the business, financial,
regulatory, and information technology
arenas that is necessary to develop a
cost-efficient process. The bottom line
is that you’re probably spending way too
much on your compliance efforts.
The Wolcott
Solution
Wolcott Group has the
cross-functional and certified expertise
that you will need to develop a more
cost-efficient, IT-governed approach to
regulatory compliance. We can help you
bridge the knowledge gap across the
business, financial, regulatory, and
information technology arenas with
consultants that are certified in
information security management,
information systems auditing, IT
governance, and a comprehensive array of
remediation solutions.
Some of the regulations that we provide
consulting expertise on include:
-
Sarbanes-Oxley Act
(SOX or Sarbox)
-
Gramm-Leach-Bliley
Act (GLBA)
-
Health Insurance
Portability and Accountability Act (HIPAA)
-
Basel II
-
Payment Card
Industry Data Security Standard (PCI)
-
Fair Credit
Reporting Act (FCRA)
-
Fair and Accurate
Credit Transactions Act (FACTA or
FACT Act)
-
Federal
Information Security Management Act
(FISMA)
Auditing standards
that we adhere to:
-
ISACA’s IS
Standards, Guidelines, and
Procedures for Auditing and Control
Professionals
-
AICPA Auditing
Standards Board’s Generally Accepted
Auditing Standards (GAAS)
-
The Institute of
Internal Auditors’ Global Technology
Audit Guides (GTAG)
-
The GAO’s
Generally Accepted Government
Auditing Standards (GAGAS)
The Solution’s
Value
A Wolcott compliance
consulting engagement can yield the
following positive results:
-
A more formalized
and efficient compliance approach
and processes
-
Reduced costs of
internal processes as well as
external consulting and auditing
fees
-
Reduced risk of
not meeting, or not being able to
verify, regulatory compliance
The Proof of Our
Success
Wolcott Group has
assisted a number of large organizations
to increase the cost-efficiency of their
compliance efforts. Our consultants have
certifications in information security
management, information systems
auditing, IT governance, and a
comprehensive array of remediation
solutions. When it comes to developing a
more cost-efficient, IT-governed
approach to regulatory compliance,
Wolcott’s consultants, tools, and
partners deliver the highest value to
solving your technology and business
challenges.
|
