Of course, while performing an assessment on your own generally is a good place to start, you should strive to have an outside assessment to validate your findings. Your wealth management firm’s IT department probably doesn't have the expertise needed to flesh out all vulnerabilities or assess controls properly, and outsourcing assessments can be a more effective and accurate option to optimize your practice’s data security assessment and remediation strategy. You’ll want to ensure that any prospective provider is adequately qualified to get the job done right.
John Paul Cunningham is CIO and CISO of Docupace Technologies. He is a technology executive with deep expertise in technology governance, risk management and information security.