Financial institutions find themselves today burdened by the growing list of regulations that require them to take measures to protect data from loss, alteration, unauthorized access or other misuse: PCI DSS (Payment Card Industry Data Security Standard), FFIEC, Sarbanes- Oxley, HIPAA, Basel II, Gramm-Leach-Bliley Act, Patriot Act, Identity Theft Red Flags, SEC requirements and state privacy laws. Government regulations also demand that financial institutions have processes in place to facilitate rapid recovery from a disaster or business interruption.

Information security and compliance have become top priorities in the financial sector. In today’s regulatory climate, banks, credit unions and other financial firms must have systems

and processes in place to protect sensitive data, control access to information, monitor activity and produce reports upon demand. To meet these requirements, government agencies mandate that financial institutions need to use independent third-parties to conduct annual security and IT audits.

To be effective, IT Auditing and Compliance must be essential components of a financial institution’s strategic objectives, core processes, and budget cycles. To meet strict IT and security guidelines, financial organizations require independent assistance with:

• IT Risk Assessment

• Outsourced IT Auditing

• Business Continuity Planning

• Disaster Recovery Testing

• Network Vulnerability Assessment

• Network Penetration Testing

The Lighthouse IT Audit and Compliance Group has a proven track record of success in the financial sector. We are an experienced and certified team of IT Auditors that offers a cost-effective approach to meeting the growing number of regulations in the banking and financial services industry.

With Lighthouse, you are assured of receiving senior-level, highly experienced partners who are intimately familiar with the financial sector’s unique IT infrastructure to conduct your IT Audit. We can also help you avoid the risk of costly damage to key business processes with an IT Compliance and Security solution specifically designed for financial organizations

As your trusted IT compliance partner, our certified IT Auditors can:

• Conduct a complete analysis of financial 
  information systems, including a review of 
  policies and procedures to assess the risk to 
  your enterprise

• Offer a cost-effective, highly experienced 
  outsourced resource for your internal IT Audit 
  function

• Help you meet the requirements for 
  Vulnerability Assessment and Penetration 
  Testing 

• Develop, update or revise your Business 
  Continuity Plan and conduct Disaster Recovery 
  Testing

We will also deliver detailed recommendations on how to eliminate vulnerabilities and mitigate risk. With Lighthouse, you will have complete confidence that your systems are in compliance with government regulations and safe from outside threats.

Deep Banking and PCI Knowledge

The Lighthouse IT Audit and Compliance Group has worked extensively with the region’s leading regional banks and credit unions to bring their IT systems up-to-date, help them ensure IT compliance, and deliver timely advice in a world with increasing reliance on speed, accuracy, and accountability.

In addition, the Lighthouse IT Audit and Compliance Group is one of the few Payment Card Industry (PCI)-Approved Scanning Vendors (ASV) and Qualified Security Assessors (QSA). Lighthouse’s expert IT Auditors – all CISA-certified auditors, network engineers and project managers – stand ready to assist you with your PCI-related compliance needs.

Lighthouse IT Auditors possess comprehensive
knowledge of industry regulations. We can help
you become compliant with internal, industry and government regulations, such as PCI DSS, FFIEC, Sarbanes-Oxley, HIPAA, Basel II, Gramm-Leach-Bliley Act, Patriot Act, Identity Theft Red Flags, SEC requirements and state privacy laws.

Our Team of Experts

Lighthouse’s IT Auditors – all of whom are either Certified Information Systems Auditors (CISA), Certified Network Engineers, Certified Project Managers or Certified in the Governance of Enterprise IT – have performed dozens of IT Audit and Compliance projects across all industries, including the highly regulated banking and financial sectors. Lighthouse is also an Approved Scanning Vendor (ASV) in the Payment Card Industry (PCI), and each of our IT Auditors is a PCI-certified Qualified Security Assessor (QSA). Our IT Auditors are the best in the business, and have multiple certifications in industry practices and testing methodologies.