Legal Seminar, Denver, CO

Audits and Compliance

Federal Authority to Operate (ATO) SOC II FBI Criminal Justice Information Services (CJIS)

Account and User Reviews Security Awareness Training

Audits and Compliance: Federal ATO

• Independent third-party audit – Review documentation, screenshots, code, settings, audit logs, etc. – Confirm policies and procedures – Assess any weaknesses and suggest actions to remediate • Results of audit to CFPB Chief Information Security Officer (CISO) and Chief Information Officer (CIO) • CIO issues official ATO