IT Risk Management Program Reviews, Development and Implementation
GMTT performs IT risk management program reviews.
GMTT develops IT risk management programs
Regulatory Audits Services–
GMTT performs regulatory audits on behalf of regulators.
GMTT reviews, on behalf of regulators regulatory audits performed by third parties.
GMTT ensures that regulatory findings and recommendations have been complied with
Industry Audit Services –
On behalf of Clients, GMTT audits and reviews their partners and third-party providers for compliance with regulations and for due diligence purposes.
General Client Reviews Services–
GMTT reviews policies and procedures, actual practices and employee knowledge.
Internal Auditing Services–
GMTT conducts internal audits.
Pre- Regulatory Audit Planning Services –
GMTT prepares entities for regulatory audits. GMTT will review relevant regulations and the entities themselves and ensure that the entities to be audited are compliant with the relevant regulations.
Post -Regulatory Audit Services–
GMTT reviews the audit findings of regulators and will advise the entities how to address, correct and respond to the audit findings.
Regulatory Enforcement Actions and Fines Services –
GMTT reviews and responds to regulatory enforcement actions and fines.
GMTT engages with regulators on behalf of clients to negotiate and challenge, if necessary, the enforcement actions and fines.
If you have a problem with a regulator, GMTT may have a solution.
GMTT provides Risk Management, cyber security governance risk and compliance audit and consulting services covering:
· 23 NY CRR 500, (NYS DFS cyber security regulations)
· NIST CSF / ISO 27001/2 /COBIT / GDPR
· Risk Assessments
· Security Controls Assessments
· Identity Access Controls
· Encryption and Network Security
· Data Access Controls / Data Loss Prevention
· Information Security Risk Management / Assessment / Development
· Business Continuity Planning / Disaster Recovery
· Windows, Unix, and Oracle
· Cloud-based tools, AWS, Azure, or Google
· SDLC
· Zero Trust Architecture
· Supply Chain Risk Management
Information Security Program Development, Management, Assurance
GMTT also provides audit and consulting services covering BSA/AML regulations. These include:
· The FFIEC BSA/AML Examination Manual
· Compliance Policies and Procedures
· BSA/AML Risk Assessment
· Governance
· Compliance Officer Requirements
· Suspicious Alerts Reviews
· Online Transactions Reviews
· Transaction Monitoring
· EDD / KYC / CIP
· Record Keeping and Recording Requirements
· Money Laundering and Terrorist Financing
· Compliance Training
· OFAC
· Suspicious Activity Reports (SARs)
· Currency Transaction Reports (CTRs)
· Agents / Foreign Correspondents
· Funds Transfer Rules
· Compliance Information Systems
GMTT Fintech Risk Consulting Inc.
381 Church Street. Suite 2 Saratoga Springs NY 12866
Tel: 1 800 614 8068 / Fax: 281 909 7904