Visconti Consulting LLC - Risk managment services to the financial industry

Trust is not a control - security requires vigilance
Home
BackGround
Risk Assessment info
Business Impact Analysis
Other Services
Contact Us
About Us
Site Map

 
Risk  Assessments in Depth
Enterprise risk assessments are a vital component of a risk management program. Financial regulators fully expect to see an operational enterprise risk program in development or fully deployed. Our firm provides financial organizations with the tools and the base necessary to insure a fully compliant and more importantly, a workable risk management program. Key components of our risk assessment program are as follows:
 
  • Comprehensive Coverage  - We cover all all operational areas. We utilize standards and regulatory requirements that are appropriate to the enterprise. Our field work is preceded by an extensive review your policies, procedures and practices in all areas. We arrive on site with customized questionnaires and procedures.

 

  • Technical Analysis -  Our  optional technical analysis is outstanding. Deep vulnerability scans in external and internal networks. False positives are eliminated. Social engineering is performed at all levels and we closely coordinate our efforts with key staff.

 

  • Appropriate standards - We evaluate your practices and procedures based on best practices and appropriate regulatory statues and recommendations.  Our risk model is based upon National Insitutute of Standards and Technology processes, FFIEC guidance and DRII process model.

 

  • Business unit Involvement - Business units are involved in the assessment and ratings risks impacts. Business units understand their operations. They have the capability to more thoroughly understand the impact of threats on their organizations and we ensure that they have plenty of impact.

 

  • Comprehensive Reporting - Our reporting provides vital information at all levels. From the executive summary to our very detailed reports, everyone has information they can use to mitigate risks and build their own risk management programs. Our reports are self documenting.  Evidence of research, regulatory references are all included. Narratives are straightforward and written in plain English.

 


 

 

 
Check it out
If you would like to see a representation of our risk assessment work, please request one on the "Contact US" section of this page..