Wed, Dec 15, 2021

Kroll Expands Cloud Security and Red Team Capabilities with Acquisition of Security Compass Advisory

Agile-friendly penetration testing to deliver safer code, faster

New York – Kroll, the world’s premier provider of services and digital products related to valuation, governance, risk and transparency, today announced that it has acquired Security Compass Advisory, a leading provider of cyber security solutions and advisory services headquartered in Canada. With the additional resources and expertise of Security Compass Advisory, Kroll expands its red team, penetration testing and cloud security capabilities to deliver agile-friendly testing that seamlessly integrates with development teams to deliver safer code, faster.

Established in 2004, Security Compass Advisory is a cyber security consulting company that helps organizations improve the security posture of their existing technology environments and accelerate adoption of new technology. Security Compass Advisory is focused on pragmatic security strategy, testing and adversarial simulation, and is known for its scalable programs built with agile development in mind. They played a critical role in developing strong security controls related to COVID-19 contact tracing applications that handled sensitive user data, and are trusted advisors to Fortune 500 clients worldwide, across a wide range of industries.

Security Compass Advisory President, Jordan Kendall, Managing Director, Krishna Raja, and Director of Sales, Joshua Arsenio, will join Kroll under the leadership of Jason Smolanoff, President of Kroll’s cyber risk practice.

Smolanoff commented, “Security Compass Advisory is the ideal strategic partner to help us realize the growth we’ve planned for our assessment and testing services both geographically, through its strength in North America, and from a technology perspective, with their experts helping enhance our growing portfolio of managed security solutions. This acquisition reinforces Kroll’s position as the only firm in the world able to deliver end-to-end cyber security solutions.”

Existing Security Compass Advisory clients will gain access to Kroll's extensive cyber security capabilities, including managed detection and response and digital risk protection, and extensive expertise in incident response, investigations, regulatory compliance and litigation support. The combined capabilities of this partnership will help clients tackle the growing complexity of securing public, private and hybrid cloud, 5G, IoT and industrial control systems without slowing the pace of innovation.

Kendall added, “Our highly technical team at Security Compass Advisory will enhance Kroll’s resources and capabilities in cloud, red teaming, and emerging technology security, bringing nearly 100 certifications tied to AWS, Microsoft Azure and offensive security. Our clients will benefit from Kroll’s extensive threat intelligence and leading incident response services. I’m very excited about the future of our combined organizations’ ability to offer more robust cyber risk management.”

Kroll CEO Jacob Silverman said, "Security Compass Advisory's innovative technologies, entrepreneurial spirit and focus on excellence are a powerful complement to Kroll's mission of delivering risk, governance and financial solutions worldwide. Our investments in technology combined with deep expertise are critical to solving the growing complexity of our clients' business challenges."

With the acquisition of Security Compass Advisory, Kroll’s Cyber Risk team now includes over 500 professionals worldwide. Learn more about Kroll’s Cyber Risk capabilities.

About Kroll 
Kroll is the world’s premier provider of services and digital products related to valuation, governance, risk and transparency. We work with clients across diverse sectors in the areas of valuation, expert services, investigations, cyber security, corporate finance, restructuring, legal and business solutions, data analytics and regulatory compliance. Our firm has nearly 5,000 professionals in 30 countries and territories around the world. For more information, visit

Devonne Cusi
[email protected]
+1 212 450 8199

Cyber Risk

Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.

Cyber Governance and Strategy

Manage cyber risk and information security governance issues with Kroll’s defensible cyber security strategy framework.

Threat Exposure and Validation

Proactively identify your highest-risk exposures and address key gaps in your security posture. As the No. 1 Incident Response provider, Kroll leverages frontline intelligence from 3000+ IR cases a year with adversary intel from deep and dark web sources to discover unknown exposures and validate defenses.

Ransomware Preparedness Assessment

Kroll’s ransomware preparedness assessment helps your organization avoid ransomware attacks by examining 14 crucial security areas and attack vectors.

Cyber Risk Retainer

Kroll delivers more than a typical incident response retainer—secure a true cyber risk retainer with elite digital forensics and incident response capabilities and maximum flexibility for proactive and notification services.

Penetration Testing Services

Validate your cyber defenses against real-world threats. Kroll’s world-class penetration testing services bring together front-line threat intelligence, thousands of hours of cyber security assessments completed each year and a team of certified cyber experts — the foundation for our sophisticated and scalable approach.

FAST Attack Simulation

Safely perform attacks on your production environment to test your security technology and processes.