Organizations are faced with a number of privacy and security regulations. You may face compliance with various state and federal regulations. If you’re SEC registered, you face additional Sarbanes-Oxley 404 regulations. If you accept credit card payments, you’re also required to meet PCI DSS compliance. In the event of a cybersecurity incident where there’s a loss of private information, organizations can face fines, legal fees, and, perhaps most detrimental, reputational damages. We can help.
Areas of Focus
1 min read
Asset/liability management: Will your model pass regulatory scrutiny
Are you prepared to meet regulatory expectations for your asset/liability management model? Here are four steps to take to confirm your model is performing in accordance with regulatory guidance and standards.
A comprehensive examination of SOC for Cybersecurity
Article August 30, 2017 4 min read
Turning risk into opportunity: Five questions to ask
Article August 28, 2017 8 min read
Assess enterprise-wide risk management with SOC for Cybersecurity
Article August 15, 2017 6 min read
Are you issuing a SOC 3 report? You should.
If you provide services, you should take advantage of a SOC 3 report.
Compliance Thought Leadership
PCI compliance: Protecting your customers and your brandFranchise owners: Are you taking the right measures to protect your customers' data? A proactive approach and several simple actions can reduce your exposure — and strengthen your brand.
PCI DSS version 3.2 changesThe Payment Card Industry (PCI) Data Security Standards (DSS) version 3.2 was released in May 2016 to include the revised migration dates and address the changing threat and payment acceptance landscape.
EMV is here: Five things you need to knowBy now you’ve likely received new credit cards including a secure chip. Learn five things you need to know to be sure you’re secure when engaging in credit card transactions.
Why a SOC 2 Report makes you a more attractive vendorData security is major concern today. Here’s why vendors should consider differentiating themselves by undergoing the SOC 2 examination and reporting process.
Our clients say
Plante Moran has a great reputation in the banking community. And it is well deserved. Their team knows banking and has helped us address complex and complicated issues like regulatory compliance, information security, and internal control procedures.
Joe Pierce President, Farmers State Bank
1 min read
PCI DSS compliance and testing
PCI DSS compliance helps company retain millions of dollars in business and attract new customers.
1 min read
SOC 2 report and ISO compliance for global firm
Global advisory firm strengthens security measures and improves security posture, improving client confidence and increasing business.
Our team of talented individuals can identify which SOC report best fits your needs based on the services you provide. We perform readiness assessments to identify control weaknesses and develop recommendations for remediation. In addition, our firm is a Qualified Security Assessor Company and can certify your organization's compliance with PCI data security standards. We’re also a CSF assessor for HITRUST and can certify your organization’s readiness and compliance with the HITRUST common security framework.