Our company is dedicated to the advancement and refinement of security programs, utilizing the expertise of our experienced Security leadership. We boast a specialization in the areas of cloud, application, and container security. We have demonstrated a commitment to evaluating operations and formulating forward-thinking, innovative strategies aimed at enhancing security management. Our philosophy is firmly rooted in the integration of essential technology tools, embracing industry best practices, and promoting a collaborative environment, all of which converge to deliver exceptional results.

British Assessment Bureau is one of the UK's most popular certification bodies, providing a wide range of certification services for more than 20 years. Through the use of a "no hidden fees" policy, plain language communications and a pragmatic approach to auditing, BAB is well regarded for the service it provides to its clients. This attention to detail and a determination to provide a first-class service to its clients is why it has achieved, and retains, its Platinum Partner status with independent reviews service, Feefo. As a UKAS-accredited certification body, BAB takes its status seriously and ensures clients are provided with a robust assessment process, not just a tick-box exercise, while providing useful guidance through its reports and backing that up with access to a range of training services that can help to increase awareness of both standards and the auditing process, in general. Being part of the Amtivo group, which has physical offices in the US, UK, Ireland, Italy, Norway, China and Japan, means clients with multiple international offices can be supported by a business with global expertise, but with local team members who understand the local markets.

Facient is a fractional consulting firm that provides on-demand implementation services to help founders navigate the challenges of growth and scale. Our customized solutions empower startups and small businesses to build capacity, drive revenue, and solve business challenges without the cost or commitment of a full-time hire. We mobilize the expertise of diverse, world-class operators building today’s most successful companies such as Meta, GE, and Calendly to supercharge small business growth and uplift underserved communities. Our core offerings include: • Operations Strategy & Execution • Sales Enablement • Business Development • Fractional Leadership

The Gnar partners with high-growth and enterprise companies to build secure, scalable, digital products -- faster. We're an experienced team of US-based product designers, full-stack engineers, and problem solvers who take pride in simplifying the gnarliest, most complex technical challenges. Whether you need to build an app from the ground up, want to confidently accelerate your roadmap, or simply have a technical challenge that's keeping you up at night: We're here for it. Our Focus: • Compliant Web & Mobile App Development • Product Design and Strategy • Complex Integrations • Technical Audits & Analysis

Cylpha is a North American cyber firm and our team brings cyber experience from • US Department of Defense • Global Military and Intelligence Agencies • Technology Consulting Firms • Big 4 Consulting Firms • CyAlpha’s growing team delivered numerous cyber engagements to various clients around the globe • Our team boasts an average of 13+ years of cybersecurity experience and an average of 21+ years of IT experience per resource • Pentest, vCISO/ vDPO Services and ISO / SOC2 Security & Privacy Consulting are our core service offerings. • Cyber Compliance / Consulting - We helped more than 200 start-up’s / midsize companies with VCISO / vDPO, cyber and privacy consulting services to prepare them for SOC2 and ISO certifications and broader compliance certifications such as CCPA, CMMC, HIPPA and GDPR • Pentests - We delivered more than 700 pen tests (from large enterprise clients to mid-size clients to start-ups) to support SOC2 and ISO certification and also to improve cyber hygiene • Our clients are located throughout the United States, Canada, Middle East and Europe, with new clients partnering with us monthly

ETHOS (n): A technology partner defined by purpose-driven innovation and unwavering integrity. Ethos delivers exceptional, secure solutions that not only solve complex challenges but also create lasting, meaningful impact through service.

Founded as a member of BrightMarbles Holding group from Rotterdam, Netherlands. UN1QUELY is a software development and cybersecurity services company that builds quality and secure software products and provides cybersecurity services from defensive, offensive and managerial aspects driven by senior talent, strong culture and empowering passion. UN1QUELY uses innovative technology and tools, with security, privacy and a cloud-first approach.

Viridus Security = Common sense governance, risk & compliance for growth stage companies. There comes a point when proving security is necessary for closing deals. We can help you make security a competitive advantage. Automated compliance tools help, but there are plenty of decisions to make along the way: 1. How much time can I take away from core work? 2. What tools do I absolutely need immediately and which can wait (ticketing, IAM, HR, SDLC, etc)? 3. Which controls don’t apply to my business, and how to do I convey that to the auditor? 4. What kind of penetration testing makes sense? 5. How the heck do I run and document a tabletop exercise? Whether you need ground up creation of policies, controls, processes and procedure or if already have a great program and are looking for CISO advice without hiring a full-time resource, we can help. Virtual CISO (vCISO) Security Implementation advice and guidance: * Vendor (3rd Party) Assurance programs * Document management * Asset Management * Application Management * Risk Management * IAM Identity Access Management * Information Security outreach, training * SDLC Security Frameworks examples: * SOC2 * GDPR * PCI * ISO27001 * HIPAA

Certified cyber risk expert specializing in early to mid-stage health tech, medical device, digital health, and cybersecurity industries. Board advisory and consulting services delivering comprehensive expertise on the implementation and development of cyber risk strategy, programs, and initiatives.

CITSAP is a next-generation cybersecurity compliance professional services firm comprising of industry experts with decades of combined experience spanning various industries including financial services, healthcare, energy, oil & gas industries, etc. We partner with organizations as trusted advisors, helping our clients to address the many unique challenges with meeting compliance requirements such as SOC 1/2, ISO 27001, HITRUST, etc., while also providing advisory and technical support services in the design and implementation of risk-based compliance programs. For small and middle-size businesses (SMBs), we also lower the barrier to gaining accessibility to quality Cybersecurity experts, streamlined processes, and technologies for effective cybersecurity risk management. At CITSAP, we recognize that adequate protection of customer data is a foundational element for companies seeking to build and maintain digital trust. We partner with our clients as trusted advisors with a core goal of helping them to develop a strategic compliance approach for addressing a plethora of risks related to the protection of customer data. CITSAP Consulting’s approach leverages a holistic framework built around highly skilled professionals, a well-defined methodology for process execution, and the use of automation compliance software for proactive management of the client’s cybersecurity and privacy compliance requirements.

Integritum is your trusted partner for building a bulletproof security posture and maximizing your cybersecurity compliance and assessment efforts. With over a decade of solid performance and over 600 clients ranging from small businesses to industry giants, we have extensive experience in all facets of information technology and cybersecurity threats and prevention mechanisms. Our services include Compliance & Privacy, Risk Assessment, Policy Development, and Cybersecurity Training. Let us help you navigate the ever-changing landscape of data privacy regulations and ensure your organization is compliant and secure.