Our risk assessment process is designed to identify threats, vulnerabilities, and potential impacts for all types of companies. Our assessment includes a review of current security controls and recommendations for how they can be improved. We work with you to create a comprehensive plan that addresses technical issues and human factors such as behavior, training, education, and awareness programs—all critical to an effective information security risk management program.

​

Compliance Readiness:

​

• NIST Cybersecurity Framework (NIST CSF)

• ISO/IEC 27001

• Center for Internet Security (CIS) Top 20 Critical Security Controls

• Payment Card Industry Data Security Standard (PCI-DSS)

• Health Insurance Portability and Accountability Act (HIPAA)

• New York State Department of Financial Services Cybersecurity Regulation 23 NYCRR 500 (NYDFS)

• Gap assessments

• Cybersecurity maturity assessments

• CIS Ransomware Readiness Assessment

• Privacy regulations (GDPR, CCPA, COPA)

 

​