SITUATION
A U.S.-based online consumer marketplace received a consent order from the Federal Trade Commission (FTC). Cybersecurity experts from FTI Cybersecurity were engaged to conduct an assessment of the Mandated Information Security program in place at the company and issue a report for the FTC.
OUR ROLE
The experts at FTI Cybersecurity began by gaining an understanding of the Mandated Information Security Program in place, and then developing and executing the testing of the controls that mapped to the program. As an independent assessor, FTI Cybersecurity examined the client’s security program, risk assessment process, internal trainings, and the design and operating effectiveness of the client’s cybersecurity controls.
OUR IMPACT
After completing the controls testing, FTI Consulting recorded the results of the tests and prepared a comprehensive report to comply with the standards and expectations of the FTC. FTI Cybersecurity delivered a written assessment of the client’s information security program on time, as required by the consent order with the FTC.