Information Security Management Systems (ISMS)

Privacy Information Management Systems (PIMS)

Cloud Security

Protection of Personally Identifiable Information (PII) in Public Clouds

IT Service Management (ITSM)

Cloud Security Alliance Security Trust Assurance and Risk, a program that documents the security controls provided by various cloud computing offerings

Implementing controls and guidelines from the National Institute of Standards and Technology

A security standard for the automotive industry based on ISO 27001

Payment Card Industry Data Security Standard for organizations that handle credit card information

General Data Protection Regulation (EU data privacy law)

Health Insurance Portability and Accountability Act (U.S. healthcare data privacy and security law)

A certifiable framework for healthcare organizations to comply with HIPAA and other regulations

Digital Personal Data Protection Act (Indian data privacy law)

Digital Operational Resilience Act (EU financial sector regulation)

Auditing foundational IT controls like access management, change control, and system operations

Auditing controls within a company's business processes to ensure accuracy and integrity

Partnering with a third-party to supplement or manage the internal audit function

Providing internal audit services specifically to help with Sarbanes-Oxley Act compliance

Audit report on internal controls relevant to financial reporting

Report on the design of controls at a specific point in time

Report on the operating effectiveness of controls over a period of time

General service for conducting independent audits on behalf of an organization