Normal layout Medium Layout Large Layout Normal Text Medium Text Large Text
  Home Search      
Welcome to CastleGarde™ - Your premier provider of Credit Union Information Security and Regulatory Compliance

April 10, 2014 Heartbleed Flaw Remediation

Please ensure you are not potentially susceptible to this OpenSSL specific zero-day flaw. Please contact us for an official position paper or at least ensure that if a vulnerable version was/is in use, to assume the private encryption keys have been compromised.  At a minimum, CastleGarde recommends updating OpenSSL to supported versions on databases, mail and web servers, reset all session-states and force re-authentication from the end client.

 

 

How secure is your member information?  How long do you think it would it take a hacker to penetrate your systems and compromise Sensitive Member Information?  These are important questions each credit union must be asking on a regular basis.

 Quick Links
Regulatory Compliance, Policy and Procedures:

  Policy Development 
  NCUA
  NCUA Reg 748 A & B
  Gramm/Leach/Bliley 
  TG-3 Audit
  Identity Theft Red Flags
  Bank Secrecy Act (BSA)
  NCUA Update Reg 748-749

Information Security, Network Security Audit and Penetration testing:

  Business Continuity
  Penetration Testing
  Latest Risks & Fixes
  Risk Assessment
  Red Flags  Identity Theft
  Member Awareness



Regulatory Compliance


Information Security Risk Assessment


Member Awareness
CastleGarde, Inc. is an acknowledged expert provider of Information Security services that document and validate how your organization is addressing the controls, access, and management of your members' information.  Specializing in Information Security and Regulatory compliance for credit unions, our team of experts focus on both your policy and technology risk assessment aspects of compliance with the specific regulations including Gramm-Leach-Bliley (GLB), National Credit Union Administration (NCUA) Reg. 748 Appendix A and B, Bank Secrecy Act (BSA) components, Identity Theft (NCUA in 12 CFR Part 717.82, Part 717.90, and Part 717.91) and other industry related regulatory concerns. 
 
FFIEC, COBIT, ISO, NCUA, NIST and PCI all have extensive lists defining over 1700 unique areas, checks, tests and controls in their respective checklists.   CastleGarde’s Risk Assessments currently address over 1600 of those specific controls.   Assessments are performed by staff with extensive credit union and industry experience - all with various recognized security industry certifications including CISSP, CISA, CISM and CEH.
 
What differentiates CastleGarde?  The human factor. 
 
Our expert staff drives the technology, personally performs and reviews all of the assessments and resultant reports, and interfaces with your staff on a personal level with respect to the findings.   We are your Information Security Consultants.  CastleGarde's personnel have well over 100 combined years experience in delivering secure Information Technology solutions to over 200 credit union clients worldwide. Our services are founded on the belief that each client is unique, hence we offer a full spectrum of customized solutions that meet security best practices. 
 
And one more thing…………Credit Unions are our only line of business!
Risk Assessment
Vulnerability Penetration Testing
Regulation Compliance
IT Security Auditing
Member Awareness
ATM Security TG-3 Auditing
Identity Theft Prevention Red Flag
Risk Assessment