Enterprise Information Security Architects

Enterprise Risk and Security Assessments * Business Continuity Assessments (BIA)

Vendor and Supply Chain Security Assessments * Strategic Road Maps and Tactical Planning
Enterprise Security Architects
  • Strategic Roadmaps
  • Risk, Privacy, and Security Assessments
  • Business Continuity Assessments (BIA)
  • Vendor Supply Chain Assessments

Our Client Profiles
Our Clients

(All engagements are strictly confidentiality)

Automotive Insurance - Non Standard Provider
  • Evaluated current posture, developed desired state including risk appetite, prepared gap analysis with multi-year budgets and road map, and presented to executive committee. 
Automotive Insurance Provider
  • Assessed security program management and providing report card evaluation for board of directors.
eDiscovery & Litigation Software – Services Provider
  • Assessed organization ability to securely provide cloud base software and BPO service offering assisting in security concerns of funding sources
  • Established security program framework, conducted risk assessment, established policy
Data Center Service Provider
  • CISO leading security compliance initiatives allowing cloud provider to achieve SSAE 16 certification
  • Documented processes and procedures, defined deficiencies, and implemented controls for certification in advance of engaging external auditor
Financial Services – Automotive Industry
  • Assessed organization’s ability to complete SSAE 16 for GLBA attestation and HIPAA compliance
  • Provided assessment and attestation of cyber risk, compliance, and business contingency for firm’s financial services clients
Financial Services - International Banking & Wealth Management
  • Assessed organization's ability to provide secure cloud base BPO services for clients located in Southeast Pacific including Singapore and Hong Kong.
  • Evaluated management, operational & technical control policies preparing for Singapore Monetary Authority compliance based on ISO 27001:2015.
Forensic Laboratory
  • Prepared gap analysis and with budgets and project plans
  • Conducted HIPAA risk assessment and implemented recommendations to satisfy compliance
Fulfillment & Supply Chain Manufacturer
  • Led organization’s cyber-security compliance initiative focused on FISMA/FIBS and HIPAA
  • Prepared gap analysis, developed project budget and plan. Developed auditable processes and controls
Health Care Software – Electronic Data Capture
  • Performed HIPAA / HITECH compliance assessment. Conducted risk assessment and reviewed policy. 
Health Care Company – Hospital Owner & Manager
  • Developed IT, Telecom, Datacenter, and Life Safety standards for new construction / renovation of hospitals, outpatient facilities, and surgery center
Health Care Wellness – Insurance Provider
  • Independent review of client’s ability to deliver application services meeting client’s SLA.
  • Reviewed infrastructure & applications readiness, contingency and disaster recovery plans
Health Care Services - Mental Health
  • Performed HIPAA / HITECH compliance assessment. Prepared risk assessment, reviewed policy / procedures. Conducted vulnerability assessment.
  • Developed policy and procedures. Prepared, incident response, continuous monitoring, and BC/DR plan.
Health Care Association -  Rural Physicians Association
  • Managed association’s HIPAA compliance for selecting and implementing EMR application
  • Developed specifications, evaluated cloud and telecom providers for statewide provider network
Law Office
  • Provided 3rd party assessment of information risk, security compliance, and business contingency for business associate attestation for firm’s banking and health care clients
Transportation Company
  • Developed assessment framework for vendor management evaluation of management, operational, and technical policies of domestic and international vendor/ BPO partners.
  • Evaluated business partners located in India and US and presented written findings.