IT Risk and Cybersecurity

Delivering optimized programs for Cybersecurity and Regulatory Compliance.

Who we are


We specialize in: IT Risk and Regulatory Compliance programs; Acquisitions Due Diligence Reviews; Information Security Assessments; and, the full implementation of security programs. Our team of practitioners and seasoned executives deliver customized plans for our clients while taking into account the user experience, information assets and organizational risks.

Capabilities


Risk Frameworks


  • ISO2700x, NIST, PCI
  • SSAE18 SOC1/SOC2
  • FFIEC, EU-EBA, ENISA

Assessments


  • Compliance Pre-Assessments
  • Resiliency Reviews
  • Incident Response

Technical Reviews


  • Blue Teams
  • Red Teams
  • Purple Teams

OnBoard Certifications


  • CISSP, CRISC, CISM, CEH, GCIH
  • ISMS 27000x LA, CGEIT, CCSLP
  • CCISO, GCFA, GSE, GSEC, GPEN

Our services


Advisory Services

Our consultants deliver business as usual processes that integrate and align cyber security investments with business needs. 

Assessment Services

Our thought leaders have the relevant technical capabilities and experience to effectively identify and address Cybersecurity risks. 

Retainer Services

A number of organizations contract our advisors to tap into seasoned individuals with fresh and current Cybersecurity industry knowledge.