Financial Institution Shared Assessments Program (FISAP)

["lists () infostruct net" <lists () infostruct net>]

If you are in the financial industry, the FISAP assessment documents
released this week are worth reviewing. FISAP is a process for financial
institutions to evaluate IT service providers. Included below are links to
a FISAP FAQ and the assessment documents themselves.

If you like the FISAP documents and have something to add, please reach out
to BITS and share your thoughts. For more information, visit
http://www.bitsinfo.org/fisap

Kind regards,

Gideon

Gideon T. Rasmussen
CISSP, CISA, CISM, SCSA
Charlotte, NC
gideon () infostruct net

http://www.ussecurityawareness.org
http://groups.yahoo.com/group/gideons-infosec-list

FISAP FAQs
http://www.bitsinfo.org/FISAP/Forms/18SharedAssessmentsFAQ.pdf

Agreed Upon Procedures 
http://www.bitsinfo.org/FISAP/Forms/AUP.pdf (37 pages)

Supplemental Information Gathering 
http://www.bitsinfo.org/FISAP/Forms/SIG.pdf (49 pages)


--------------------------------------------------------------------
mail2web - Check your email from the web at
http://mail2web.com/ .



---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------