DRRT’s risk management and oversight involves governance, allocation of resources, and training and awareness of employees. DRRT generally leverages existing information security policies and practices to address cybersecurity risks. Routinely discussing cybersecurity issues in senior management meetings helps DRRT set the tone from the top and build a security culture. Strong governance includes clearly defined roles and responsibilities that assign accountability to identify, assess, and manage cybersecurity risks across DRRT.
DRRT has completed its Type 1 SOC audit. This ensures our clients that the firm’s security, availability, processing integrity, confidentiality, and/or privacy meet the highest standards and controls.
DRRT is also GDPR compliant and is registered with the EU-U.S. Privacy Shield Framework.