Auditing
Audit & Assessments
We use audits and assessments to verify and validate that objectives are being met, risks are being managed, and compliance is being achieved. Our firm provides a range of audit and assessment services including:
- ISO 9001 – Quality Management Systems;
- ISO 20000 – Service Management;
- ISO 22301 – Business Continuity Management;
- ISO 27001 – Information Security Management;
- ISO 31000 – Risk Management, or the joint Cloud Security Alliance and British Standards
- Institute (CSA/BSI) STAR (Security, Trust, and Assurance Registry) scheme.
- CASA STAR
- NIST-based Security Control Assessments
- FedRAMP
- HIPPA
Working with regional CPA firms, we provide audit related services for publicly traded companies, to include SOC audits, and qualified Security Control Assessor (SCA) resources for U.S.
NIST-based assessments, as part of the federal Risk Management Framework (RMF).
Our consulting services are adaptable to any facet of information security, including technology, policy and procedures, compliance network design, disaster recovery, compliance standards, and incident response.
