WEST COAST REGIONAL ADDRESS
1 Sansome St.
35th Floor
San Francisco, CA 94104
CORPORATE & MIDWEST REGIONAL ADDRESS
4235 Hillsboro Pike
Suite 300
Nashville, TN 37215
NORTHEAST REGIONAL ADDRESS
200 Park Avenue
Suite 1700
New York, NY 10166
SOUTHEAST REGIONAL ADDRESS
1228 East 7th Ave.
Suite 200
Tampa, FL 33605
11755 Wilshire Blvd.
Suite 1250
Los Angeles, CA 90025
Suite 1250
Los Angeles, CA 90025
3838 Oak Lawn Avenue
Suite 100
Dallas, TX 75219
Suite 100
Dallas, TX 75219
235 Peachtree ST NE
Suite 400
Atlanta, GA 30303
Suite 400
Atlanta, GA 30303
10411 Motor City Drive
Suite 750
Bethesda, MD 20817
Suite 750
Bethesda, MD 20817
6040 California Avenue SW
Suite C
Seattle, WA 98136
Suite C
Seattle, WA 98136
200 West Madison
Suite 2100
Chicago, IL 60606
Suite 2100
Chicago, IL 60606
All Rights Reserved
© 2021 KirkpatrickPrice
The Main Types of Security Policies in Cybersecurity
/0 Comments/in Blog /by KirkpatrickPriceIn 2020, security breaches cost businesses an average of $3.86 million, but the cost of individual incidents varied significantly. The main factor in the cost variance was cybersecurity policies and how well they were implemented. Cost mitigating factors include security best practices such as encryption and vulnerability testing, but board involvement in creating and enforcing […]
The 5 Components of Risk Management
/0 Comments/in Blog /by KirkpatrickPriceEvery business must contend with risks, some chosen deliberately and others an inherent part of the environment in which the business operates. Founding a business, launching products onto the market, employing people, collecting data, building systems—these are all essential to growing a successful business. They are also all sources of risk. But a business doesn’t […]
PCI DSS Compliance: What Do SAQ, AoC, and RoC Mean?
/0 Comments/in Audit FAQs, Blog /by Sarah HarveyThe Payment Card Industry Data Security Standard, or PCI DSS, was established as a standard security requirement for all entities that store, process, or transmit cardholder data. PCI DSS compliance helps to demonstrate your security commitment and assure your clients that their cardholder data is protected. When you engage in a PCI DSS audit, you’re […]
Using NIST 800-53 vs. NIST 800-171 in a FISMA Audit
/0 Comments/in Audit FAQs, Blog /by Sarah HarveyWhen any organization engages in a FISMA audit, their information systems are organized according to FIPS 199 and FIPS 200 to determine security categories and impact levels. Then, those systems are tested against a tailored set of baseline security controls. Depending on whether an organization is a federal agency or a private sector entity, different […]
FISMA vs. FedRAMP
/0 Comments/in Audit FAQs, Blog /by Sarah HarveyFISMA and FedRAMP audits are often confused because both involve compliance around government data. But, when you dive into the details of each audit, you’ll recognize the differences are stark. Let’s talk through each of these compliance audits and how you can tell them apart from one another. What is FISMA? The Federal Information Security […]