IT Compliance Program Development

Consulting on privacy frameworks and regulation compliance, including GDPR, CCPA, 23 NYCRR 500, 201 CMR 17, and Privacy Shield, to ensure data protection and regulatory adherence.

The IT Audit Group LLC, is a B2B subscription based Management Consulting firm servicing organizations throughout their IT Compliance cycle. We create Compliance Programs where none exists, we perform audits of existing environments, and manage the "current state"​ compliance posture via Continuous Monitoring.

Most common requests....

• Breach Notification & Insurance
• Cloud Compliance: CCM, CMMI, IaaS, SaaS, PaaS, AWS, Google, Azure, +
• Cloud Solutions: AWS, Azure, Google, Oracle +
• Compliance Readiness: SOX, SOC 1, SOC 2, HIPAA / HITRUST, PCI, SSAE 18, FINRA, ISO 27001
• Compliance Starter Packet (for start-ups)
• Compliance Testing
• Cybersecurity & Incident Response • Disaster Recovery & Business Continuity, Table Top
• Farm Credit Administration (FCA) IT Security
• Fin: GRC, FFIEC, NCUA, FINRA cyber security
• Frameworks: ISO, NIST, SANS, CIS - Top 20
• IT Audit (including ITGC), AS400, ERP – SAP, Oracle, Baan, Navision
• IT Policies & Procedures
• Privacy: GDPR, CCPA, 23 NYCRR 500, 201 CMR 17, Privacy Shield
• Regulations: GDPR, FINRA, FedRAMP+, GLBA
• Risk Assessment / Gap / BIA
• Security Questionnaires: SIG, SIG Lite, CIS, CAIQ, NIST 800-171, VSAQ
• Vendor IT Security Questionnaires / 3rd Party Security Questionnaires (general)
• Vendor Risk Management