Compliance & due diligence services

Providing the information security assurances your regulatory compliance & due diligence processes require

Our services

Information security is a key requirement for many compliance regulations and due diligence processes. Our services can help provide the security assurances you and your regulators require.

Take a look at the compliance and due diligence processes we support below:

Merger & Acquisition
Due Diligence

Information security is a key part of any Merger & Acquisition due diligence process, providing the opportunity to identify and manage potential security risks before completion.

PCI DSS
Penetration Testing

PCI DSS requires that penetration testing is performed annually, or after major changes to the infrastructure, applications or systems that store, process or transmit cardholder data.

ISO 27001
Penetration Testing

Penetration testing and vulnerability analysis is an essential part of ISO 27001 Information Security Management System (ISMS) certification. Find out how we can help you.

Additional compliance services

We can assist organisations looking to comply with various regulations from across the globe, whether testing is a mandatory requirement or used to support more general security obligations. These include:

GDPR/The Data Protection Act 2018

SOC 2

Health Insurance Portability & Accountability Act (HIPAA)

Sarbanes-Oxley Act (SOX)

SWIFT Customer Security Programme (CSP)

Gramm-Leach-Bliley Act (GLBA)

Federal Information Security Management Act (FISMA)

Defense Federal Acquisition Regulation Supplement (DFARS)

NIS Directive

NY SHIELD Act