Oread Risk & Advisory

An industry leading security and compliance solutions provider with a focus on lifecycle approach to building a long-term compliance infrastructure. Professional Services include the following: Attestation SOC 1 Reporting - SOC 1 examinations report on your company’s internal controls that impacts your customers’ internal controls over financial reporting. A SOC 1 report will provide comfort and confidence to your clients that you have proper controls in place as it relates to the services you provide. SOC 2 Reporting - SOC 2 examinations report on your business’ security, confidentiality, availability, privacy, and/or processing integrity across your various systems. A SOC 2 report will provide comfort and confidence to your clients that you have proper controls as it relates to the network, applications and customer data you are managing. SOC 3 Reporting: SOC 3 examinations report on your business’ system security, confidentiality, availability, privacy, and/or processing integrity across your various systems. Information Technology Risk, Governance & Compliance Consulting • IT Risk, Security & Compliance Management Outsourcing • NIST-Cyber Security Framework Readiness Assessment, Development and Implementation • ISO 27001 Readiness Assessment • Assessing, defining and implementing IT Governance models • Vendor Security Risk Assessments • IT General Controls, SOX Readiness & Application Controls Assessment • Data Center Assessments • Business Continuity/Disaster Recovery Planning • Privacy Regulation assessment & compliance (e.g. General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA)) • HIPAA Compliance Contact us at: info@oreadrisk.com