IT Risk Management

Nearly all business and financial operations are driven by technology, making IT systems central to your organization’s sustainability. Effective data security is critical as cyberthreats become more common and damaging.

New cloud solutions and mobile banking innovations present major opportunities to deliver better service to your members, but your business and clients are both vulnerable if you’re not properly protecting data.

Develop customized solutions that can evolve to address new threats and regulatory guidance while delivering peace of mind to you and your customers.

Key Support Areas


Protect your sensitive corporate information and the personal information of your employees and customers with effective security and IT systems.

IT Compliance

Determine how your company stacks up in meeting statutory requirements such as SOC 1,2,3; PCI DSS; and HIPAA & HITRUST; adhering to strategic practices in corporate governance; or reducing reputational risk with security assessments and audits.

Review IT General Controls

Safeguard member information against Federal Financial Institutions Examination Council (FFIEC) guideline requirements based on evaluations of your main computer system, network security, and ancillary systems.

Test Network Vulnerabilities

Determine the strength of your network through controlled penetration tests that simulate attacks against known weak points in your system—approaching the system through a hacker’s viewpoint.

Evaluate Employee Safety Precautions

Mitigate the risk of your employees mistakenly revealing confidential information through an evaluation of the training they receive.

PIN Encryption and Key Management Audits

Test your procedures and controls for governing PIN and encryption key management requirements in accordance with the ATM Systems Operating Rules and Guidelines.

Review Vendor Management

Evaluate your vendor management program against current regulatory requirements.

Reviews help:

  • Address your institution’s processes for due diligence and contracts prior to closing
  • Verify that contracts appropriately address critical security, compliance, and service topics
  • Assess how you monitor service provider relationships


Cybersecurity Guide

Cybersecurity is a topic that’s at the forefront of all our minds. We hope our Cybersecurity Guide helps you identify where your organization might be vulnerable as you begin to formulate a plan to protect what’s valuable to you. If you have questions about assessing your company and implementing safeguards, don’t hesitate to contact us.

Industry Expertise

Matching deep industry experience spanning 35 years with creative strategies uniquely tailored to your organization, our professionals can help with tax, assurance, and consulting solutions while uncovering timely opportunities for growth.

Our professionals are solely dedicated to financial services clients with a deep understanding of common risk areas and best practice recommendations—bringing passion, expertise, and a spirit of active collaboration to each engagement.

We serve more than 2,200 financial services and financial institutions clients nationwide. Our programs are based on in-depth risk evaluation to focus work on areas that represent the greatest exposure and assisting clients in strengthening controls and improving processes.

Primary Contact