Security Program Development & Assessment


Security and control risks are continually evolving and can easily outpace the learning curve of even the best CIO and CISO.

Registered hedge funds, private equities and various other players in financial services are now being mandated to develop cyber security programs – many are adopting compliance models, such as NIST and ISO, which require 3rd party vendors as part of the assessment and implementation process.

Gotham Security is a leading expert in security programs based on:

  • ISO 27001 Program Development – ISO 27001 is the International Standard for Information Security Management. It specifies the requirements of an Information Security Management System (ISMS) and provides a comprehensive set of 133 security controls. Implementing and certifying a world-class ISMS in your organization can provide a significant competitive advantage.
  • NIST Cyber Security Framework – The National Institute of Standards and Technology Cyber Security Framework is a risk-based approach to managing cyber security risk. This initiative is adopted by the SEC to assess cyber security preparedness in the securities industry and to obtain information about the industry’s recent experiences with certain types of cyber threats.

For more information on how Gotham Security can hep assess and develop your organization’s security program, please contact us at or 917.734.4120