Start the Conversation

Honeypot Field to Catch Bots
Honeypot Field to Catch Bots

Reporting on our compliance

DFIN establishes various controls to ensure the confidentiality, integrity and availability of client data. Cornerstones of DFIN cybersecurity are ensuring our security controls are operating effectively and measuring the effectiveness of governance, risk and compliance programs.

Icon 1

IT Governance and Risk

Learn about IT governance and risk @DFIN.

Icon 1

Reports and documents

Learn how DFIN demonstrates compliance throughout the enterprise. Request-up-to-date reports and other artifacts.

IT Governance and Risk

DFIN’s IT governance is comprised of processes by which we align our IT (development, infrastructure, cybersecurity) practices within our overall business strategy. As a key part of our overall IT governance efforts, we are able to ensure efficiency, security, and effective resource use, as well as compliance with both internal and external regulations.

Additionally, DFIN’s IT governance ensures that the needs of our stakeholders, including our clients, are evaluated to determine enterprise objectives, and are used to set direction (in decision making and prioritization) to monitor performance and compliance.

DFIN’s IT risk management program applies risk management methods to manage IT related threats. Our efforts involve procedures, polices and tools to identify, assess and remediate potential threats and vulnerabilities within DFIN’s information technology landscape. This includes both internal risk analysis as well as third party supplier risk (supply chain security).

Icon 1

IT Governance and Risk

Learn about IT governance and risk @DFIN.

IT Governance and Risk

DFIN’s IT governance is comprised of processes by which we align our IT (development, infrastructure, cybersecurity) practices within our overall business strategy. As a key part of our overall IT governance efforts, we are able to ensure efficiency, security, and effective resource use, as well as compliance with both internal and external regulations.

Additionally, DFIN’s IT governance ensures that the needs of our stakeholders, including our clients, are evaluated to determine enterprise objectives, and are used to set direction (in decision making and prioritization) to monitor performance and compliance.

DFIN’s IT risk management program applies risk management methods to manage IT related threats. Our efforts involve procedures, polices and tools to identify, assess and remediate potential threats and vulnerabilities within DFIN’s information technology landscape. This includes both internal risk analysis as well as third party supplier risk (supply chain security).

Icon 1

Reports and documents

Learn how DFIN demonstrates compliance throughout the enterprise. Request-up-to-date reports and other artifacts.

Reports and documents

DFIN’s GRC (Governance Risk and Compliance) team manages compliance activities across DFIN’s technology landscape to ensure our adherence with industry and governmental regulations. A large part of the GRC team’s efforts center around evaluation defining control frameworks and then evaluating and testing controls within those frameworks. Additionally, DFIN GRC’s Compliance team evaluates and tests our IT standards, policies and procedures via continuous assessment.

DFIN understands that compliance is critical to our clients’ needs and makes several different reports and assessments available for review.

We can provide additional information including our SOC 2 Type II report, once a Non-Disclosure Agreement is signed

Insider by Dfin

Our CISO, Dannie Combs, discusses security and regulatory compliance

Read the blog
Dannie Combs - Chief Information Security Officer

More findings, right this way

Blog

AI In Financial Reporting

The Use of AI in Financial Reporting for Corporations - Card
View blog

Blog

SEC Regulation Best Interest

View blog

Blog

Statutory Reporting 101: What Financial Professionals Need to Know

Statutory Reporting 101: What Financial Professionals Need to Know - Social
View blog

Blog

What is SASB & Why It Matters For Investors

View blog

Blog

What is Bankruptcy? Pre-Planning, Filing Requirements & Business Strategies

What Is Bankruptcy Card
View blog

Press Release

DFIN’s Now Filing via EDGAR Next: Simplifying Enrollment Ahead of SEC’s September 12 Deadline

Read press release

Case Study

European Wax Case Study

Read case study

Case Study

MBX Biosciences Case Study

Read case study

Resources

Debt Capital Market Trends and Future Outlook

View resource

Infographic

7 steps for IPO Readiness

View infographic

White Paper

Say on Pay: Navigating Shareholder Expectations in a Volatile Market

Read white paper

Article

European Accessibility Act: How EAA Compliance Builds Investor Trust

Read article

Blog

Deals, Diligence, and Dry Powder: What to Watch in the Second Half of 2025

View blog

Article

ESEF Reporting in 2H 2025: What UK and European Listed Companies Need to Know

Read article

Guide

The Public Company Handbook

View guide

White Paper

Navigate Your IPO with Clarity and Confidence

Read white paper

Report

DFIN's IPO & Public Listing Report - Q2 2025 Edition

Read report

Fact Sheet

Supporting the European Accessibility Act (EAA)

View fact sheet

Video

Navigating EDGAR Next: Top Questions Answered

Watch video

Resources

Shelf Offerings and Shelf Registrations

View resource