WE HELP FAST GROWING COMPANIES NAVIGATE RISK

OUR SERVICES


IT AUDIT ADVISORY
Our management-level team of audit and assurance experts can help build a world-class IT internal audit function.
CYBER RISK ADVISORY
We help security executives understand and build risk management programs that provide valuable insight which drive decision making.
COMPLIANCE ADVISORY
We are “compliance insiders” that help fast growing companies navigate new compliance requirements from vendors and regulators.
SOC 2 READINESS
Build customer trust with end-to-end navigation of “attestation” requirements such as SOC 1 and SOC 2.
ISO 27001 READINESS
Design and implement an ISO 27001 program to achieve certification or to establish a program baseline.
PCI DSS READINESS
Our experts help scope the card data environment, prepare for, and manage PCI DSS requirements with ease.
IT SOX TESTING
Talented IT Audit resources with business and technical acumen can out-source or co-source to meet audit requirements.
GOVERNANCE & RISK
From policy writing to IT audits, we help develop programs and implement tools that drive insights and better decision making.
CYBER SECURITY
Gap analysis and assessment against industry standard best practices like ISO 27001, NIST 800-33, or CIS CSC.

OUR THINKING


How to Effectively Communicate Your Security and Compliance Story to Prospective Clients and Business Partners
I read an article last week about Wal-Mart forcing some of their vendors off Amazon’s cloud. Wal-Mart has an incredible
Read more.
What SOC 2 Updates to COSO 2013 Mean for You (Whitepaper)
Beginning December 15, 2018, (with optional adoption beginning April 2017) all SOC 2 reports will be required to utilize the
Read more.
Wannacry Ransomware & Mitigation Steps
A major cyberattack took place this past week. The attack impacted organizations in over 100 counties including the British National
Read more.
Georgia Tech on risk3sixty: “Disruptive Startup to Automate Risk Assessment and Compliance Functions”
You can read the full article here.
Read more.
How a Better IT Risk Assessment May Change Your Thoughts on the Traditional Gap Analysis
Does your company perform a risk assessment? If you said yes, what did you mean by “risk assessment”? I ask
Read more.
Developing an IT Audit & Security Plan for Microsoft Office 365
Our team was recently tasked with developing an audit plan for Microsoft Office 365. While there are plenty of tools
Read more.

LET’S TALK ABOUT YOUR BUSINESS