Companies large and small must comply with a confusing mix of regulations and laws such as the PCI DSS (Payment Card Industry Data Security Standard), FFIEC, Sarbanes-Oxley, HIPAA, Basel II, Gramm-Leach-Bliley Act, Patriot Act, Identity Theft Red Flags, SEC requirements and state privacy laws. Even in today’s tough economy, and in the face of rising costs and shrinking staffs, companies must remain a step ahead of these complex compliance requirements.

The practice of IT Audit and Compliance identifies and remediates any violations of these regulations and requirements from both a technical and procedural perspective. It is also a very complex practice that can become costly and time-consuming. To meet strict IT and security guidelines, organizations require independent assistance with:

• IT Auditing & Risk Assessment Services 

• Payment Card Industry (PCI) Services

• Compliance Services for Financial Institutions

• Privacy Regulations Compliance Services

• Business Continuity Planning Services 

• Security Assessment Services 

• Business Continuity Program Portal

• Computer Forensics & Incident Response
   Services

In today’s economy, with companies trying to streamline operations and lower costs and staffs, outsourcing IT Audit and Compliance is a valuable means to meeting business objectives.

The Lighthouse IT Audit and Compliance Group provides experienced, certified IT Auditors to perform your IT audit and compliance work at a lower cost than maintaining your own internal auditing staff. By outsourcing your IT Audit and Compliance requirements to Lighthouse, you can save costs while ensuring complete IT compliance by employing objective, certified consultants from an independent and trusted IT leader.

The Lighthouse IT Audit and Compliance Group can help you minimize and manage your IT Compliance burden:

• Lighthouse’s expertise in IT Auditing and 
  Compliance spans multiple industries, 
  software platforms, and applications.

• Each member of our IT Compliance team is a
  Certified Information Systems Auditor (CISA).

• Each IT Auditor possesses more than ten 
  years experience within the industry. 

• All of our projects follow the strict CoBiT® 
  Framework, adhering to specific industry and 
  government standards. 

• We possess a proven track record of success
  in the financial services sector.

• All of our work in the banking industry closely 
  follows the latest FFIEC Guidance.

IT-Centric Focus

With so much at stake, the knowledge and experience of your IT Auditors are crucial – yet growing demand has prompted many technology providers, CPA firms and independent consultants to begin offering compliance services. The problem is that these firms are mostly focused on financial audits with IT Audits being an add-on to their main business.

Not so with Lighthouse. Our sole focus is IT. Our IT Audit and Compliance Group is an experienced and certified team of IT Auditors that offers a cost-effective approach to meeting the growing number of regulations. With Lighthouse, you are assured of receiving senior-level, highly experienced partners to conduct your IT Audit.

Deep Banking and PCI Knowledge

The Lighthouse IT Audit and Compliance Group has worked extensively with the region’s leading regional banks and credit unions to bring their IT systems up-to-date, help them ensure IT compliance, and deliver timely advice in a world with increasing reliance on accuracy and accountability.

Lighthouse is also an Approved Scanning Vendor (ASV) in the Payment Card Industry (PCI), and each our consultants are PCI-certified Qualified Security Assessors (QSA). Lighthouse’s experts stand ready to assist you with your PCI-related compliance needs. Lighthouse can help you avoid the risk of costly damage to key business processes with an IT Compliance and Security solution specifically designed to assist financial organizations in becoming compliant with government regulations and to implement an on-going control framework.

Our Team of Experts

Lighthouse’s IT Auditors – all of whom are either Certified Information Systems Auditors (CISA), Certified Network Engineers, Certified Project Managers or Certified in the Governance of Enterprise IT – have performed dozens of IT Audit and Compliance projects across all industries, including the highly regulated banking and financial sectors. Lighthouse is also an Approved Scanning Vendor (ASV) in the Payment Card Industry (PCI), and each of our IT Auditors is a PCI-certified Qualified Security Assessor (QSA). Our IT Auditors are the best in the business, and have multiple certifications in industry practices and testing methodologies.