Portcullis Security: TrustCC partners with Portcullis for complexity web application assessments and covert external penetration testing.
Trace Security: TrustCC performs IT Audits, TR-39 Audits and Website Reviews for TraceSecurity clients through sub-contracting agreements.
Compliance Services Inc.: CSI compliments TrustCC’s service offerings by delivering non-IT compliance services such as lending reviews, BSA audits, vendor management. CSI has one of the most seasoned teams in the Western United States!
Internet Identity: II is TrustCC’s goto partner for taking down phishing sites.
National Credit Union Administration (NCUA): NCUA is the independent federal agency that regulates, charters and supervises federal credit unions.
Federal Financial Institutions Examination Council (FFIEC): FFIEC creates federally-implemented policies and report forms for the federal examination of financial institutions by the Board of Governors of the Federal Reserve.
Federal Deposit Insurance Corporation (FDIC): The FDIC is a government corporation that provides deposit insurance, guaranteeing the safety of deposits in member banks, currently up to $250,000 per depositor per bank.
Federal Reserve Bank: The Federal Reserve Bank is the central bank of the United States, consisting of a federal government agency, the Board of Governors in Washington D.C. and 12 regional Reserve Banks.
Office of the Comptroller of the Currency (OCC): The OCC charters, regulates, and supervises all national banks. It also supervises the federal branches and agencies of foreign banks.
Industry Standards and Misc Sites:
National Institute of Standards and Technology (NIST): As an agency of the US Department of Commerce, NIST’s Computer Security Division conducts research and provides guidance for agencies on IT security threats to protect Federal systems. NIST is also involved in developing the standards for testing, and the implementation of effective security practices within these Federal agencies.
Center for Internet Security (CIS): CIS is a non-profit enterprise that delivers security configuration standards through a global consensus process, involving participants from the public and private sectors.
Information Systems Audit and Control Association (ISACA): ISACA provides practical IT security guidance, recommends technical tools and sets control standards for enterprises worldwide. ISACA also defines the roles and responsibilities of information systems governance, control security and audit professionals.
Payment Card Industry Standards Council (PCI): The PCI Security Standards Council sets the requirements for merchants and services providers managing credit card information.
Gramm-Leach-Bliley Act (GLBA): The Gramm-Leach-Bliley Act requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data.
Sarbanes-Oxley Act (SOX): This act, administered by the Securities and Exchange Commission (SEC), sets deadlines for compliance and publishes rules on requirements for enterprise. The Sarbanes-Oxley is not a set of business practices and does not specify how a business should store records; rather, it defines which records are to be stored and for how long, in order to track any fraudulent activity.