CU*Answers has a rolling schedule of network security audits and assessments including internal and external penetration testing. We do not limit the scope of these tests to just the online banking environment. We also do not publish the results or reports from these tests for security reasons.
The test results are reviewed by our Executive Team, our Board of Directors (made up of peer credit union CEOs), as well as examiners from the NCUA and state regulatory agencies. They are also reviewed by independent auditors as part of the SSAE-16 reporting process. The documents we do publish (including the SSAE-16 and Online Banking Risk Assessment) are available on our web site. Refer to the links below.