Security Assessment & Testing


Managed Security Services

Internal Controls Risk Assessment

Sarbanes 404 Technology Audits

Application Security

Fraud Detection

Information Request

Contact Us


FDC Associates performs the technical audits you need for your regulatory compliance, financial reporting and organizational security needs. We are expert at technology auditing and vulnerability testing for Internet and network security assessments, SOX compliance audits (Sarbanes-Oxley), GLBA Privacy Act reviews, (Gramm-Leach-Bliley Privacy Act), OFAC (Office of Foreign Asset Control) and BSA (Bank Secrecy Act) procedures reviews, HIPAA (Health Insurance Portability and Accountability Act) security, and PCI (Payment Card Industry) compliance requirements.

Fundamentally, strong functional internal controls that are audited on a regular basis will answer any and all security and regulatory needs. Our procedures, based on an accurate and insightful risk assessment, will verify the completeness of your internal control design and exactly define your technology audit scope and audit schedule, providing you with the assurance that your audit scope is complete and that these critical technology controls are functioning and can be relied upon. By applying our risk identification and management process, you reduce the impact on your organization from new regulations or changes to existing regulations, going forward.

We make extensive use of automated auditing tools that enable us to quickly and accurately observe implemented security settings and configurations for the entire population, permitting our expert staff to provide you with actionable information regarding the functionality of key controls. These automated tools are particularly powerful when verifying the computer access assigned to your employees, distinctly enforcing management's required separation of duties.

We can provide your firm with the technology audit services you need on a 'Turn-key' or 'ad-hoc' basis, utilizing your staff whenever possible to reduce your auditing costs. We specialize in providing high-complexity technology audits, including:

Internet Penetration Testing
Network Security and Vulnerability Reviews
Server and Database Security Reviews
Active Directory and Application Security Reviews
Service Provider and User Control Considerations
Sarbanes-Oxley Technology Reviews
IT General Control Reviews

We want to provide the IT Audit and Governance Solutions your company needs. Our credentialed staff has provided these specialized services for over 500 clients across the United States and over 30 countries abroad. From expert risk assessments to field work, testing and understandable independent reports, we get it done.