• Assessments and Remediation – Today we have more regulations, standards and compliance requirements than ever before.  If the trend is any indication, this will only continue.  Our professionals will help navigate this daunting task and design a program fit for your business requirements.  You name it, we have seen it: ISO/27001/2, HIPAA, SOX, PCI DSS, NIST, GLBA, FISMA and the list goes on.  Knowing where to start and how to maintain a sound and robust program is the goal. 
  • SSAE 18 SOC 1 and SOC 2 – Whether you are looking for a Service Organization Controls (SOC) Report or a SOC Readiness Assessment, the Grassi Team, comprised of accountants and consultants, will work with you to  ensure the Statement on Standards for Attestation Engagements (SSAE) No. 18 are met. If you are a service provider and need to provide a SOC 1 Type 1 or Type 2 or a SOC 2 report, the efficiencies that we offer will result in cost savings and more time to focus on your business.
  • NYSDFS Cybersecurity Regulation – The State of New York was the first state in our Union to dictate a cybersecurity regulation that affects all companies registered with the Department of Financial Services. Entities ranging from the largest Banks in the world to the smallest insurance company are all bound by the same regulation.  Our professionals assist you in maintaining your compliance with this program.  Are you confident that you are in compliance with all of the security domains and can honestly attest to them?  While you may be new to this regulation or need an independent assessment, we are ready to serve.