Services

FDC Associates performs the technical audits you need for your regulatory compliance, financial reporting and organizational security needs. We are expert at technology auditing and vulnerability testing for Internet and network security assessments, SOX compliance audits (Sarbanes-Oxley), GLBA Privacy Act reviews, (Gramm-Leach-Bliley Privacy Act), OFAC (Office of Foreign Asset Control) and BSA (Bank Secrecy Act) procedures reviews, HIPAA (Health Insurance Portability and Accountability Act) security, and PCI (Payment Card Industry) compliance requirements.

Fundamentally, strong functional internal controls that are audited on a regular basis will answer any and all security and regulatory needs. Our procedures, based on an accurate and insightful risk assessment, will verify the completeness of your internal control design and exactly define your technology audit scope and audit schedule, providing you with the assurance that your audit scope is complete and that these critical technology controls are functioning and can be relied upon. By applying our risk identification and management process, you reduce the impact on your organization from new regulations or changes to existing regulations, going forward.

We make extensive use of automated auditing tools that enable us to quickly and accurately observe implemented security settings and configurations for the entire population, permitting our expert staff to provide you with actionable information regarding the functionality of key controls. These automated tools are particularly powerful when verifying the computer access assigned to your employees, distinctly enforcing management's required separation of duties.

We can provide your firm with the technology audit services you need on a 'Turn-key' or 'ad-hoc' basis, utilizing your staff whenever possible to reduce your auditing costs. We specialize in providing high-complexity technology audits, including:

Internet Penetration Testing

Network Security and Vulnerability Reviews

Server and Database Security Reviews

Active Directory and Application Security Reviews

Service Provider and User Control Considerations

Sarbanes-Oxley Technology Reviews

IT General Control Reviews

We want to provide the IT Audit and Governance Solutions your company needs. Our credentialed staff has provided these specialized services for over 500 clients across the United States and over 30 countries abroad. From expert risk assessments to field work, testing and understandable independent reports, we get it done.