Cyber Risk
-
Governance and Risk Advisory
- Cyber Policy Review and Design
- Virtual CISO (vCISO) Advisory Services
- Incident Response Plan Development
- Security Culture as a Service (SCaaS)
- Incident Response Tabletop Exercises
- Data Protection Officer (DPO) Consultancy Services
- Optimized Third-Party Cyber Risk Management Programs
- Third Party Cyber Audits and Reviews
- CyberClarity360
-
Incident Response and Litigation Support
- Computer Forensics
- Data Collection and Preservation
- 24x7 Incident Response
- Cyber Risk Retainers
- Cyber Litigation Support
- Global eDiscovery Services
- PHI and PII Identification
- Office 365 Security, Forensics and Incident Response
- Data Recovery and Forensic Analysis
- Malware and Advanced Persistent Threat Detection
- Kroll Artifact Parser Extractor (KAPE)
- Payment Card Industry Services
-
System Assessments and Testing
- Cyber Vulnerability Assessment
- Penetration Testing Services
- Cyber Risk Assessments
- Ransomware Preparedness Assessment
- Cybersecurity Due Diligence for M&A
- HIPAA Security Risk Assessments
- CCPA Compliance Assessment
- Cloud Security Services
- CMMC Certification Preparedness Assessment
- Data Mapping for GDPR, CCPA and Privacy Regulations
- FAST Attack Simulation
- Remote Work Security Assessment
- Notification, Call Centers and Monitoring
- Managed Security Services
- Kroll Partner Solutions
Cyber Risk Assessments
Kroll's cyber risk assessments deliver actionable recommendations to improve security, using industry best practices & the best technology available.
When it comes to data breach prevention, what you don’t know can hurt you. Your company faces IT risk daily – whether you’re fending off internal threats or enhancing protection against external intrusions.
How well are you balancing your need to lock down data with tighter security controls, while providing your team with practically effortless access to the information that drives your success? You can never be sure of your security stance unless you’re conducting periodic security assessments.
At Kroll, we apply years of data breach prevention expertise to our cyber risk assessments, helping you identify potential vulnerabilities and implement sound data breach prevention practices for effectively securing your sensitive information. Because we are ‘technology agnostic,’ our focus is solely on performing as your advocate in the complex world of Information Technology.
Kroll’s IT Risk Assessment team consists of career security professionals, individuals who pride themselves in their facility with cutting edge technology and sophisticated tools as well as in having the keen instinct of seasoned criminal investigators.
Our experts are Certified Information Systems Auditors, Certified Information Security Managers, Certified Information Systems Security Professionals, and Certified Ethical Hackers. They are ex-FBI agents, corporate security directors, cyber investigators, forensic computer scientists and networking professionals – people who speak the same language as your internal IT staff, and who can perform the in-depth analysis your busy IT staff doesn’t have the time or resources to conduct.
Security assessments accurately define your potential for exposure
Performing security assessments for global clients from nearly every industry and government agency, Kroll’s information security experts employ tested techniques, industry best practices, and the best of commercial and proprietary technologies to:
- Identify, monitor, and analyze information-related vulnerabilities effectively
- Help you determine methods to manage or resolve data security risks
- Spot potential data privacy and security compliance issues
- Prioritize remediation steps into an effective plan based on your company’s specific goals, schedule, and budget
Information risk assessments: One size does not fit all
At Kroll, we recognize the key to successful information risk assessments and data breach prevention is achieving and maintaining the right security level for your organization. Our data breach prevention experts offer a full range of internal and external risk assessments to evaluate your systems, applications, and processes for a variety of vulnerabilities, including:
- Enterprise IT risk assessments and analysis
- Network security assessments
- Penetration testing
- Physical security assessments
- Vulnerability assessments
- Web application testing
- Wireless assessments
- Policy assessment and design
Kroll works with your IT department and internal IT security staff to analyze your system from a top-level perspective, looking for patterns to determine what’s driving the vulnerabilities we’ve identified. Finally – and most importantly – the Kroll IT Risk Assessment team will translate our findings into actionable improvement initiatives for your business, with a list of prioritized recommendations.
Industry Accreditation
CREST has accredited Kroll as a global Penetration Testing provider.
System Assessments and Testing
Cyber Vulnerability Assessment
Cyber Vulnerability AssessmentPenetration Testing Services
Penetration Testing ServicesRansomware Preparedness Assessment
Ransomware Preparedness AssessmentCybersecurity Due Diligence for M&A
Cybersecurity Due Diligence for M&AHIPAA Security Risk Assessments
HIPAA Security Risk AssessmentsCCPA Compliance Assessment
CCPA Compliance AssessmentCloud Security Services
Cloud Security ServicesCMMC Certification Preparedness Assessment
CMMC Certification Preparedness AssessmentData Mapping for GDPR, CCPA and Privacy Regulations
Data Mapping for GDPR, CCPA and Privacy RegulationsFAST Attack Simulation
FAST Attack SimulationRemote Work Security Assessment
Remote Work Security AssessmentContact Us
Jason N. Smolanoff
Senior Managing Director and Global Head of Cyber Risk
Cyber Risk
Los Angeles
Jason N. Smolanoff
Greg Michaels
Managing Director and LATAM Practice Leader
Cyber Risk
Secaucus
Greg Michaels
Alan Brill
Senior Managing Director
Cyber Risk
Secaucus
Alan Brill
Other Areas We Can Help
Cyber Risk
Global, end-to-end cyber risk solutions.
Virtual CISO (vCISO) Advisory Services
Services to help teams safeguard information assets while supporting business operations.
Cyber Litigation Support
Expert witnesses on any cyber topic including forensic data collection and analysis.
Data Protection Officer (DPO) Consultancy Services
Partnering with law firms to help deliver a core set of DPO services for GDPR compliance.
Governance and Risk Advisory
Manage cyber risk governance issues with Kroll’s defensible security strategy framework.
Cyber Risk Retainers
Secure a true cyber risk retainer with elite digital forensics and incident response capabilities.
24x7 Incident Response
Compliant notifications, reputation-saving remediation, and litigation support.
Notification, Call Centers and Monitoring
Global breach notification expertise to efficiently manage regulatory and reputational needs.