Cybersecurity Compliance Bundle

Quote Provided

The Cybersecurity Compliance Bundle is AdvantageCIO’s approach to providing all of the documentation and cybersecurity action items that credit unions need to complete. It consists of items directly noted in the Gramm Leach Bliley Act, as well as the NCUA’s new ACET assessment. We will complete each of these items on an annual basis. With AdvantageCIO guiding your team through the process, it will not only address the regulatory requirement, but it will help prepare you for your next examination or audit.

Overview

The Cybersecurity Compliance Bundle includes:

  • Information Security Risk Assessment
  • Information Security Program and Policies
  • Business Continuity Plan
  • Annual Information Security Report for the Board of Directors
  • NCUA ACET
  • Quarterly External Vulnerability Assessment

The Process

  1. We will complete one document at a time, spreading the work over 12 months. We typically start with the IS Risk Assessment, Information Security Program and Policies, Business Continuity Plan, NCUA and then Annual Information Security Report, however if you have a different order based on examination findings we can adjust accordingly.
  2. ACIO will schedule time to work with you through the initial information collection, including identifying all assets.
  3. Review your existing policies and plans, carry the details specific to your institution into the new plan.
  4. Review all technology controls and document accordingly (Note: Does not include CU*BASE technical controls assessment).
  5. Propose additional controls where appropriate.
  6. Assist in development of testing / training plans.
  7. Draft document presentation and Q&A session.
  8. Finalize report and prep for board review.

Timeline:

We spread the deliverables out over a 12 month period. We will work with you to set the schedule due dates.

Next Steps:

Order now setup a time for an introductory call to discuss the Cybersecurity Compliance Bundle in more detail as well as answer any questions you have. Following the introductory call, AdvantageCIO will provide a detailed statement of work.

Search this service on AnswerBook

Reviews

There are no reviews yet.

Be the first to review “Cybersecurity Compliance Bundle”

Your email address will not be published. Required fields are marked *