IT Assurance and Risk Services

In today's complex business world, corporate executives face critical technology issues such as regulatory compliance, information privacy and security, records management, fraud prevention, disaster recovery, and business continuity. HORNE LLP's Information Technology Assurance and Risk Services Team has the knowledge and experience to assist companies with these critical issues.

Here is a summary of the IT Assurance and Risk Services that HORNE provides:

Assurance

• Information systems documentation and operational reviews
• Information systems internal control audits
• Information systems audit outsourcing
• SAS70 service provider audits

Regulatory Compliance

• Gramm-Leach-Bliley information security compliance (banking)
• HIPAA Privacy/Security Rule compliance (health care)
• Sarbanes-Oxley compliance (publicly traded companies)
• Security breach notification act compliance (32 states)
• FISMA compliance (federal government information security standards)
• Plastic Card Industry Data Security Standard compliance (credit card payments and processing)
• Electronic Discovery (amended Federal Rules of Civil Procedure)

Technology Risk

• Information security assessments
• Information systems change management reviews
• Document retention and management
• Incident response planning
• Network penetration tests
• Vulnerability scans
• Disaster recovery and business continuity planning

Information Systems Management

• Information systems selection, purchasing and implementation
• Information systems operational assessments
• Information systems planning
• Information systems conversions
• Information systems policies and procedures
• Information systems staffing assessments
• Information systems data retention and protection