who we are

Our experienced professionals include JD, CISA and CISSP on staff.

Our specialty:  Risk Management, Governance Risk and Compliance

GMTT has extensive experience with

 · 23 NY CRR 500, (NYS DFS cyber security regulations) 

· NIST CSF / ISO 27001/2  /COBIT / GDPR 

· FFIEC IT Examination Handbook  

· Risk Assessments

· Security Controls Assessments

· Identity Access Controls

· Encryption and Network Security

· Data Access Controls / Data Loss Prevention

· Business Continuity Planning / Disaster Recovery

· Windows, Unix, and Oracle 

· Cloud-based tools, applications, AWS, Azure, Google 

· SDLC 

· Zero Trust Architecture

· Supply Chain Risk Management

Information Security Program Development, Management, Assurance  

GMTT has additional extensive experience with BSA/AML regulations. FinCEN regulations and guidance;  BSA/AML Compliance Policies and Procedures; Risk Assessment; BSA/AML Governance; Compliance Officer Requirements; Suspicious Alerts Reviews; Online Transactions Reviews; Transaction Monitoring; EDD; KYC / CIP; Record Keeping and Recording Requirements; Money Laundering and Terrorist Financing; Compliance Training ;OFAC; Suspicious Activity Reports (SARs); Currency Transaction Reports (CTRs); Agents Reviews; Foreign Correspondents; Funds Transfer Rules; Compliance Information Systems