Services
Vendor Risk Management - VRM
The single most vulnerable area for a data breach comes from a company's vendors. A breach of your company by a vendor could cost you millions of dollars in fines, litigation, and possibly the loss of your business. An ISO 27001, SOC 2 Type II, and other reviews are important, but they are not enough in today’s environment. We can show you how to improve your assessments of vendors and tighten their security while accessing your systems.
General Data Protection Regulation & Global Privacy
Did you know, if a company retains European Union (EU) data (PII) outside of the EU, Model Clauses need to be put in place, i.e., Data Transfer /Data Processing Agreements. Not having the proper agreements in place can lead to fines of up to 4% of Global Sales and be levied by the EU Commission.
It is not only the EU with which you need to be concerned, Russia, Argentina, Brazil, Abu Dhabi Global Market Free Zone, Qatar, Australia, Indonesia and others require specific agreements.
We can help you sort though these complex issues.
IT Audits & Service Organization Controls Report
IT Audits and SOC 1 & 2 Type 2 Reports help in determining the efficacy of a companies IT Operations but in today's environment is is only part of the mix.
You can't bake a cake with one ingredient any more than you can validate a company's IT Controls with only one type of report. We can show you how and why additional scrutiny is required.