Gramm-Leach-Bliley Act

The Gramm-Leach-Bliley Financial Services Modernization Act (GLBA) requires mandatory compliance by financial institutions in protecting consumer's nonpublic information held by the institution.

WHAT ARE COMPLIANCE REQUIREMENTS?

In order to determine whether financial institutions are compliant with the GLBA Privacy regulations, all aspects of the organization's security environment and practices need to be reviewed/assessed. The criteria for assessment include:

• Comprehensive review of the organization's Information Security Architecture Plan
• Information Security Technical Policies and Procedures
• Internal Security Controls Assessment process
• Network Security Threat & Vulnerability Assessment

Virtustream Security Solutions ComplyVision™ solution has been designed to guide audit teams through a structured methodology that strictly follows the ISO 27001 standard mapped to the GLBA requirements and helps prepare the HIPAA audit package complete with assessment, analysis and documentation. The solution also allows creation, maintenance and reporting of the Plan of Actions (POA) throughout the pre- and post-audit process.

ComplyVision solution provides a full view of your current security posture through self-assessment while breaking down the improvement process into straightforward, manageable and repeatable steps. Using methodical analysis, potential security gaps are identified and addressed with authentic, real-world solutions.

For Continuous compliance, consider combining the ComplyVision™ solution with the ThreatVision™ solution.

For additional information on how the ComplyVision™ and ThreatVision™ solution can help you in your preparation of FISMA C&A package, FISMA audit and Continuous Compliance, please contact our experts at 703.310.6449, or e-mail us at [email protected].