Our Services

Governance, Risk & Compliance

• Threat Risk Assessment
• Privacy Impact Assessment
• Security and Privacy Program Implementation
• Internal Audit or Advisory on industry standards including;
  • ISO Family of standards including 27001, 27002, 27017, 27018, 27701, 22301, 20000
  • * NIST CSF
  • * SOC 1 and 2
  • * PCI-DSS
  • * CIS Critical Controls and IT benchmarks
• Advisory on the Government of Ontario IT Standards (GO-ITS)
• Advisory on the NERC CIP Standards
• Advisory on data protection and privacy regulations including Canada’s PIPEDA, Ontario’s PHIPA, AB and BC’s PIPA, The USA HIPAA Regulation and the EU GDPR Regulation
• IT Advisory
• Incident Response Plan Readiness Exercises
• Policy, standards and procedure development
• Business Continuity and Disaster Plan Development and Readiness
• Vulnerability Management Program Implimentation
• Governance, Risk and Compliance Platform Implimentation and Optimization

Technical Security

• Security Architecture Development and Review
• Security penetration testing (network, system and web application)
• Technical Vulnerability Assessment
• Technical Security Hardening and Advisory
• Technical Security Audit (i.e. Firewall, IDS and Endpoint security configuration review)
• Identity Access Management solution advisory
• Security and Information Event Management solution advisory

AI Assurance

• Gap Analysis using the NIST AI Risk Management (RMF) and ISO/IEC 23894 as a baseline
• AI Ethics and Governance Consulting
• AI Compliance and Regulatory Advisory
• AI Governance Framework Implementation

Staff Augmentation Services

• Virtual CISO Enlistment