© Scott S. Perry, CPA, PLLC.

Scott Perry is co-author of the Online Trust Alliance's Internet of Things (IoT) Trust Framework, a groundbreaking set of security criteria set to protect connected home and wearable devices from security and privacy threats. The Firm can help companies implement this framework or act as an independent attester of compliance.  For more information on this criteria, CLICK HERE

TRUST FRAMEWORK ASSESSMENTS

INTERNET OF THINGS AUDITS

The Firm  is an Accredited Assessor of Credential and Component Service Providers of both the Kantara Initiative and SAFE-BioPharma's Trust Service Frameworks at all levels. Both frameworks are are comparable to Federal Identity, Credential, and Access Management (FICAM) requirements supporting the vision of the US National Strategy for Trusted Identities in Cyberspace (NSTIC). For more details on the Firm's Kantara accreditation CLICK HERE. For more information on SAFE-BioPharma CLICK HERE.

TRUST FRAMEWORK ASSESSMENTS

If you are interested in an expert management advisor to build controls and governance structures that can sustain audit and external scrutiny, please contact the Firm. The Firm has built policies, procedures and governance structures that can sustain WebTrust and Federal Bridge PKI audits so you can stand up a new PKI and obtain an audit in a fraction of the time you would need to create materials yourself.

PKI GOVERNANCE & CONTROLS CONSULTING

The Firm was a member of the US Delegation to ISO's Subcommittee 27 which is responsible for ISO/IEC 27001 series development.  It delivers ISO 27001 management certification audits with its affiliation with  Professional Evaluation and Certification Board (PECB), an accredited Management System Certification Body by International Accreditation Service (IAS) under ISO/IEC 17021 – Requirements for bodies providing audit and certification of management system.  For more information about ISO 27001 Management Certification through PECB, CLICK HERE

ISO 27001 MANAGEMENT 

CERTIFICATION 

SOC AUDITS

As a registered CPA Firm, it is qualified to issue AICPA Service Organization Control Reports just like the mega public accounting firms.  The Firm brings the same customer focus and efficient methodology to bear on making its SOC services cost effective for the small to medium-sized service organizations. For more detail into its SOC audits and methodology,CLICK HERE.
PKI Compliance services encompass an entire life-cycle from education and start-up consultations, to initial operations and zero-day audits - finally to annual compliance audits and control optimization.  The Firm is a licensed and recognized practitioner of both WebTrust® for Certification Authority​  and Federal Bridge Certification Authority member and  audits.  Its unique PKI Audit Methodology personalizes and blends with your daily operations to reduce the distractions audits typically pull from your critical activities.  For more detail into the Firm's PKI Compliance Audit services and methodology, CLICK HERE.

WEBTRUST® & PKI COMPLIANCE AUDIT