Areas of Expertise

With one of the widest ranges of expertise in the consulting business, Susan Orr can help you with almost any of your needs. Her vast regulatory, risk management, and knowledge in security best practices are some of the broadest and most thorough you will find anywhere.

Click any of the areas of expertise below to find out more:

140x140

Audit Services

IT General Controls and Information/Cyber Security reviews for financial institutions across all charters.  These audits incorporate FFIEC guidance, GLBA, ISO, Agreed Upon Procedures as applicable and feasible; and include but are not limited to areas such as...
View details »

140x140

Business Continuity Management (BCM)

Susan Orr helped write one of the first B.C.M. handbooks for the F.F.I.E.C. immediately after 9/11. Her assessment for your individual needs will go well beyond even those strict requirements.
View details »

140x140

Consulting Services

Targeted consulting services for financial institutions. These services include but are not limited to the review and enhancement of your IT and Information and Cyber Security Programs and...
View details »

140x140

Data Security

It’s often easy for companies to focus only on their perimeter security. Years of experience has taught Susan Orr that internal controls & security is generally your weakest link. Don’t overlook this vital area. We don’t.
View details »

140x140

Electronic Payment Systems

Old services have become the emerging, hot new technology. Susan Orr’s years of experience understanding these security risks and threats lets her provide you with one of the most comprehensive reviews possible.
View details »

140x140

Incident Response

Susan Orr presents a plan that goes far beyond the regulatory requirements. Let her show you why the extra mile is worth it.
View details »

140x140

IT General Controls

Our competition treats these standards on an IT audit with a general plan. Susan Orr goes beyond with one of the industry’s most thorough analysis.
View details »

140x140

Physical Security

This important area is often forgotten or overlooked. Susan Orr provides this audit item that others rarely care to look at.
View details »

140x140

Policy Compliance

Susan Orr goes over every sentence, every word of every policy you have. The most comprehensive editing and refining of your policies can only be done by reading them cover to cover.
View details »

140x140

Remote Deposit Capture

While the competition often doesn’t offer this service, Susan Orr is actually leading the way in assessing your current compliance in this technology.
View details »

140x140

Vendor Management

Susan Orr was assessing at the highest levels before this area became one of the examiner’s hot spots. She can show you why you can’t just meet, but must exceed in this category.
View details »

140x140

Virtual Information Security Officer (vISO)

The FFIEC agencies require all financial institutions to have an independent Information Security Officer(s) (ISO). Susan’s many years in the field of Information Security Audit and Consulting provide her the expertise to fulfill this role for you.
View details »

Talk with Susan today. You will find there isn’t much she hasn’t seen, solved or could solve for you.


Susan E. Orr, CISA, CISM, CRP, CRISC

  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manger (CISM)
  • Certified Risk Professional (CRP)
  • Certified In Risk & Information System Control (CRISC)

    • Contact Susan