The FFIEC agencies require all financial institutions to have an independent Information Security Officer(s) (ISO) and just having an individual designated as ISO isn’t enough. For smaller institutions this becomes a challenge. While you can assign responsibilities to the IT Committee or to multiple individuals, it still can be challenging trying to fill the gaps. Using a Virtual Information Security Officer to assist your internally designated ISO can be a good fit. Susan’s many years in the field of Information Security Audit and Consulting provide her the expertise to fulfill this role for you.
Talk with Susan today. You will find there isn’t much she hasn’t seen, solved or could solve for you.
Susan E. Orr, CISA, CISM, CRP, CRISC