Building IT Governance to Meet Internal and Regulator Demands

Challenge A large mortgage securitization solution provider needed to build and operationalize IT governance and software development lifecycle (SDLC) processes to support external audits, regulator exams, and quick remediation of SDLC and compliance issues. Solution Established a unified IT governance and SLDC program, which included: Detailing guidelines of roles, responsibilities, policies, procedures, and standards Creating […]

Staying Ahead of Consumer Privacy Data Laws

https://vimeo.com/413680629 Does your company collect data? If so, new privacy laws make it imperative that you understand what can and can’t be done with it. These rapid regulatory changes to how data is used will impact both the overall profitability of data usage, as well as your company’s potential liability. The European Union’s General Data […]

3 Things Every Organization Should Do to Prevent Data Breaches

https://vimeo.com/400267935/1356a249a0News reports of data breaches feel common these days. Banks, corporations, and even the federal government have been victims of hackers due to firewall vulnerabilities or simply not knowing how much and where their sensitive data is stored. While many businesses have a plan in place to deal with security failures, it’s wise to think […]

Complying With CCAR and DFAST Federal Regulations

Challenge A U.S. bank holding company need to comply with the Federal Reserve Bank’s Comprehensive Capital Analysis and Review (CCAR) process and the Dodd-Frank Act’s Annual Stress Test (DFAST) for this client was unmanageable due to its numerous and individually managed risk management offices across the enterprise. Solution Mobilized a team to rapidly implement a […]

Enabling Data Usage While Protecting Against Data Loss Prevention

Challenge A leading financial services company wanted to ensure the continued protection of its data while allowing employees to have more access and visibility into critical data assets. Solution Built a cross-functional team that included collaboration among the CISO, CIO, and CPO, as well as IT, HR, legal, and audit teams, to: Identify and locate […]

Enhancing Cyber Capabilities to Protect Against Bad Actors

Challenge A leading financial service’s cyber team needed , engineering, and development expertise and support. Solution Delivered a team of data engineers and full-stack developers to enhance client’s cyber capabilities through: Providing strategic advisory and stabilization development efforts for the ELK backbone, with nine PBs of critical enterprise cybersecurity log data Implementing a suite of […]

Improving the DevOps Experience While Lowering Risk Posture

Challenge A leading financial services company required assessment and unification of all software development lifecycle (SDLC) activities and the use and deployment of open source software (OSS) across the enterprise. These projects had to balance the needs of DevOps and maintain the company’s risk posture in a heavily regulated industry. Solution Defined, unified, and simplified […]

Remediating Regulator Findings and Protecting the Organization

Challenge A top 3 U.S. residential mortgage provider recently had Federal Financial Institutions Examination Council (FFIEC) findings referencing the lack of formal policies, procedures, controls, and standards (PPCS) in the their IT environment. Solution Assessed and remediated these technology risk management findings by: Deploying financial services risk management experts who understand regulations Assessing the current […]

Video: How Financial Services Firms Can Boost Their Cloud and Customer Data ROI

The pace of technological innovation, coupled with widespread regulatory changes such as the California Consumer Privacy Act, is forcing companies to reconsider how they store, protect and use their data – and how they can put it to work to improve efficiency, cut costs and serve customers better. Infinitive CEO Denis McFarlane recently spoke with Financial […]