Security Assessment & Testing


Managed Security Services

Internal Controls Risk Assessment

Sarbanes 404 Technology Audits

Application Security

Fraud Detection

Information Request

Contact Us


The changing and complex world of technology creates frequent challenges for managers, who are responsible for deliverables that require a wide range of specific skills and expertise. Inevitably, not all of the necessary skills or knowledge are possessed by your current staff, and you cannot cost justify a full-time employee to provide these skills.

What areas in IT will likely need to be tested for Sarbanes-Oxley compliance? In those areas, is your firm doing the right things? Have a need for a SAS 70 document or a scheduled corporate Internal Audit and you don't want to discover that you are "wide of the mark" in certain key control areas in these reports? You are not alone.

The Associates at FDC are expert at performing IT Internal Audits, Pre-SAS 70 and SOX Audit reviews, with the specific objective of discovering control weaknesses and recommend solutions so that you pass with flying colors.

"I had not been through an IT internal audit in some time. FDC Associates came in and quickly identified specific areas for improvement and in many instances managed the remediation effort. When it was time for the SAS 70 review, I received a clean opinion, which gave me and my customers comfort that the internal controls were functioning and could be relied upon. Beyond that though, I actually enjoyed working with FDC Associates, and stand in awe of their insight into technology controls and how to structure them."
~ VP of Operational Excellence, Software development firm.

We can provide the scope and test design for your audits and then supervise your employees as we train them for next year's reviews. We can make the most of your staff's knowledge of your business, while providing the IT Governance and regulatory requirement knowledge necessary to accomplish your compliance efforts. We specialize in providing high-complexity technology audits, such as:
Internet Penetration Testing
Network Security and Vulnerability Reviews
Server and Database Security Reviews
Active Directory and Application Security Reviews
Service Provider and User Control Considerations
Sarbanes-Oxley Technology Reviews
IT General Control Reviews

Using a co-sourcing or staff augmentation approach permits you to obtain the technical reviews you need, without incurring the cost of a full-time IT Auditor. We keep our people trained and up on the latest technologies and regulations, so you don't have to. We tackle the difficult risk assessments and technology testing on a daily basis; it's what we do and what we've done for over 500 clients across the United States and over 30 countries abroad. For more information on how FDC Associates can your IT Audit and Governance Solutions provider, complete an Information Request or Contact Us.