FISAP Compliance Services

The Financial Institution Shared Assessments Program (FISAP) is a groundbreaking new process for financial institutions and their business partners to evaluate the security controls of their IT service providers. Click here to pdf brochure.

	The Quick Read Comprehensive Standard Common agreed to standard across Financial Institutions and their IT Service Providers Standardizes and aligns testing procedures with industry regulations Gain efficiency in your assessment activities Reduce cost to prepare and manage compliance Click Here to download FISAP Compliance Services (pdf)

Who Needs a FISAP Compliance Services?

	Companies searching for a consolidated assessment program that is accepted by all of your business partners and service providers.
	Companies that are financial institutions or engage in business or provide service to a financial institution.
	IT Service Providers to Financial Institutions
	Companies interested in consolidating the multitude of assessment standards that are being applied against them.
	Companies searching for a comprehensive compliance standard regardless of your industry.

What is FISAP Compliance Services?

The Financial Institution Shared Assessments Program (FISAP) is a groundbreaking new process for financial institutions and their business partners to evaluate the security controls of their IT service providers.

FISAP provides major efficiencies and can provide significant cost savings to financial institutions their business partners and their service providers.

	Efficient alternative to existing service provider assessment methods		Helps financial institutions & business partners to align service provider testing with industry regulations
	Comprehensive compliance standard that is applicable regardless of industry

FISAP Compliance Services Engagement Process and Deliverables

After an initial call, the Arsenal Security Group Senior Information Security Professional will prepare a statement of work within 2 days and we normally can begin an engagement within two weeks. During the engagement we will use interviews, questionnaires, physical tours and technical tools to develop our assessment. We usually use 1-2 consultants in tandem with our Senior Information Security Professional to complete an engagement. We will provide an executive summary, a detailed report with all of our findings and recommendations, and a final onsite presentation. Our engagement is not complete until all of our deliverables have been reviewed and accepted by our client.

About Arsenal Security Group
Arsenal Security Group is a security consulting firm that is focused on close client coordination and collaboration. From the initial meeting through the final presentation, one of Arsenal Security Group’s Senior Information Security Professionals will be the primary contact for all engagement activities. We proactively conduct weekly calls with our client when engaged and meet with clients on a quarterly basis to review and understand their security posture – even when we are not actively engaged on assignment to ensure they are aware of new security risks or regulatory changes they may impact their business.