We’re experienced cybersecurity compliance strategists and follow an approach founded in our industry experiences from both commercial and military sectors. We blend best practices from Big 4 audit & consulting and DoD information assurance programs. We understand what it takes to secure compliance, build a resilient cyber program while enabling productivity and success of the business.  We’re here to give you confidence that your approach to cyber security thrives.

​

Regulatory Compliance & Cyber Program Design:

​

• NIST Cyber Security Framework (CSF)

• NIST 800-53

• DoD Defense Federal Acquisition Regulation Supplement (DFARS)

• NIST 800-171 Compliance

• Cybersecurity Maturity Model Certification (CMMC)

• DHS 4300a Sensitive Systems 

• NIST Small Business

• HIPAA / HITECH / HITRUST

• SOC2 Type I / SOC2 Type II

• Sarbanes–Oxley (SOX)

• SEC Regulations

• NAIC Model Laws

• New York State DFS Part 500 Regulations

  • Operating as an authorized NY Financial Services Virtual CISO

• South Carolina Insurance Data Security Act

• MA 201 State Regulations

• Ohio Data Protection Act

​