SIMPLIFYING CYBERSECURITY, PRIVACY & COMPLIANCE

At CyberCompass we are dedicated to helping small businesses become compliant with applicable regulations, and securing the sensitive data entrusted to them. We believe all of our data is safer when our small businesses are secure. We know that you can win or lose critical contracts based on your compliance status. We also know that becoming compliant can be expensive and time consuming, especially if you are not a compliance expert. Our Small Business Assisted Packages are designed to help you reach your goals at an affordable price, learn more about what we do and how we can help below.

Assess
Start with a formal risk assessment by a qualified third party.
We identify issues across your organization and perfom appropriate pen-testing.

Correct
Take corretive action in prioritized order.
We provide simple step by step prioritized remediation to harden systems and engage employees. We provide required risk management plan, written information security plan, policies & procedures, training, prioritized technical strategy and guidance.

Inform
Complete cloud platform with reporting, dashboard, secure storage and vendor compliance management. Reports for management, executives, board of directors and investors.

CyberCompass is a cyber risk management consulting and GRC / CISO tool software firm.
We navigate organizations through the complexity of cybersecurity and compliance at half the cost of full-time employees.
We design, create, implement, and maintain information security and compliance programs.
We provide consulting services and a cloud-based workflow automation platform to save our clients over 65% of the time to become and remain cyber resilient and compliant.

Regulations and Standards We Support

  • CIS 18 - Center for Internet Security 18 Critical Security Controls

  • CMMC 2.0 - Cybersecurity Maturity Model Certification - Prep for certification

  • FTC SR - FTC Safeguards Rule

  • GDPR - EU General Data Protection Regulation

  • HIPAA - Health Insurance Portability and Accountability Act

  • HIPAA Audit Protocol - HHS Audit

  • ISO 27001 - Information Security Management Systems - Prep for Certification

  • NIST CSF 2.0 - Cyber Security Framework

  • NIST SP 800-171 - Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations

  • NY Reg 500 - New York Department of Financial Services Reg 500

  • SOC 2 - Service Organization Control Type 2 - Prep for Certification

  • TCPA - Telecommunications Consumer Protection Act

  • TPN - Trusted Partner Network - Motion Picture Association

  • US State Privacy Laws - California CCPA/CPRA, Texas, Utah, New Hampshire, New Jersey, Delaware, Connectticut, Indiana, Kentucky, Virginia, Tennessee, Iowa, Nebraska, Colorado, Montana, Oregon


Get started by picking the CyberCompass plan that fits your organization!
We offer Assisted Assessments.
Self-Assessments are not worth doing because you receive no credit from clients, regulators or auditors. So, don't waste your money or time on them, unless the regulation specifically allows them, like CMMC Level 1.
Our Small Business Assisted solutions include consulting hours to help you answer the assessment correctly, then show you how to address the prioritized issues identified during the assessment. Includes policies & procedures, training, vendor compliance management and resource documents.
We Offer virtual / fractional CISO, Privacy and Compliance Officer Services

Everything you need, including professional assistance,
in one simple package at a great self-assessment price to become cyber resilient and compliant.
Guided Security Risk Assessment, Risk Management Plan,Training, plus consulting services.

Buy with Confidence - 7 Day Full Refund or Credit to Change Accounts/Services*
Contact Us if you have questions.

CMMC 2.0
Level 2

CIS 18, FTC Safeguards Rule, HIPAA, TPN

GDPR or US State Privacy
CMMC Level 1

Cybersecurity, Privacy, and Compliance Small Business Assisted Package

Cybersecurity, Privacy, and Compliance Small Business Assisted Package

Privacy and Compliance
Small Business Assistance Package

  • Assisted Security Risk Assessment for any two covered regulations

  • Meets the requirements of Security Risk Analysis for CMMC plus any privacy assessment

  • Up to 12 hours of professional guidance from the CyberCompass virtual cyber team

  • Easy to use software

  • Risk report generated at completion

  • Risk Management Plan

  • Prioritized Issues List

  • Tracks and documents mitigation

  • On-demand compliance report

  • FREE Vendor Compliance Manager

  • FREE Cybersecurity Awareness Training - Self-paced videos
    -- Training topics include: Email Security, Malware Identification, Password Security, Safe Internet Browsing, VPN Use, Social Engineering Risks, Phishing, Insider Threats, Physical Security, Use of Personal Devices.
    -- Progress tracked per person
    -- Watch as time permits
    -- Certificate of completion

  • Assisted Security Risk Assessment for two regulations (non-CMMC/ISO)

  • Meets the requirements of Security Risk Analysis for CIS 18, FTC Safeguards, HIPAA, NIST CSF 2.0, NIST 171 or TPN

  • Up to 8 hours of professional guidance from the CyberCompass virtual cyber team

  • Easy to use software

  • Risk adjusted report generated at completion

  • Risk Management Plan

  • Prioritized Issues List

  • Tracks and documents mitigation

  • On-demand compliance report

  • FREE Vendor Compliance Manager

  • FREE Cybersecurity Awareness Training / HIPAA Staff & Officer Training - Self-paced videos
    -- Training topics include: Email Security, Malware Identification, Password Security, Safe Internet Browsing, VPN Use, Social Engineering Risks, Phishing, Insider Threats, Physical Security, Use of Personal Devices.
    -- Progress tracked per person
    -- Watch as time permits
    -- Certificate of completion
    HIPAA Courses:
    -- 1-hr staff course
    -- 3 hr officer course

  • Assisted Privacy Risk Assessment for any two privacy regulations

  • Meets the requirements of Risk Assessment for GDPR, CPRA, and other US State privacy laws

  • Up to 6 hours of professional guidance from the CyberCompass virtual cyber team

  • Easy to use software

  • Risk adjusted report generated at completion

  • Risk Management Plan

  • Prioritized Issues List

  • Tracks and documents mitigation

  • On-demand compliance report

  • FREE Vendor Compliance Manager

  • FREE Cybersecurity Awareness Training / HIPAA Staff & Officer Training - Self-paced videos
    -- Training topics include: Email Security, Malware Identification, Password Security, Safe Internet Browsing, VPN Use, Social Engineering Risks, Phishing, Insider Threats, Physical Security, Use of Personal Devices.
    -- Progress tracked per person
    -- Watch as time permits
    -- Certificate of completion
    HIPAA Courses:
    -- 1-hr staff course
    -- 3 hr officer course

up to 10 Employees $5,499/year

up to 25 Employees $6,599/year

up to 50 Employees $7,499/year

up to 10 employees $2,899/year

up to 25 Employees $3,299/year

up to 50 Employees $3,699/year

up to 10 employees $2,499/year

up to 25 Employees $2,899/year

up to 50 Employees $3,299/year

Add Network Vulnerability Scans to Your Order

  • Internal Network Vulnerability Scans

  • External Network Vulnerability Scans

  • Web Application Vulnerability Scans

  • Dark Web Scans

up to 10 Employees
$7,699/year

up to 25 Employees
$8,699/year

up to 50 Employees
$10,199/year

up to 10 employees
$3,999/year

up to 25 Employees
$5,099/year

up to 50 Employees
$5,899/year

up to 10 employees
$3,699/year

up to 25 Employees
$4,699/year

up to 50 Employees
$5,499/year

More than 50 employees or need more than two types of assessments?

Ready To Use Policies & Procedures

  • Full set of applicable policies and procedures.
    CIS 18, CMMC, FTC Safeguards, HIPAA, ISO 27001, NIST CSF, NIST 800-171, US State Privacy Laws, TCPA, TPN

  • Covers privacy and security.

  • PDF version or MS Word Version

  • Customization performed by system to be more applicable to your business.

  • Updates provided to keep current with requirements.

  • Fully searchable.

  • Audience focused for easier and faster implementation

  • Customer specific customization offered for additional fees.

  • Includes:
    + Risk Management Plan
    + Information Security, Privacy, and Compliance Program
    + IT Security Plan
    + Workforce Security Plan
    + Business Impact Analysis
    + Business Continuity Plan
    + Disaster Recovery Plan
    + Incident Response Plan
    + Breach Notification Plan
    + and all necessary policies and procedures

PDF Version - One Time Payment $1,999

MS Word - One Time Payment $3,499

Vendor / Supplier Compliance Managment
Supply Chain / Third Party Cyber Risk Management

  • Maintain profile for each vendor
    + Company Info
    + Contacts
    + Contract Status
    + Upload Contract(s)

  • Track type of data accessed

  • Type of compliance held

  • Send surveys to vendors
    + Track completion
    + Track compliance

Up to 25 Vendors $249

Up to 50 Vendors $449

Cybersecurity Awareness & HIPAA Training

Is your staff leaving you vulnerable?

With 67% of breaches related to employee behavior, appropriate training is vital to your security.
Teach your employees to be vigilant against cyber crime and protect your patients with our affordable on-demand CyberCompass training.
HIPAA Training is Vital to your Patients
Protecting patient information is part of patient safety. 1 in 4 children who had their identity stolen felt the continued repercussions up to 10 years later.We also offer phishing campaigns using KnowBe4, contact us for a quote.

Get started by selecting the plan that fits your organization!

Cybersecurity Awareness Training

  • Privacy and security

  • Complete and current

  • Online courses

  • Progress tracked per person

  • Watch as time permits

  • Certificate of completion

  • Training topics include: Email Security, Malware Identification, Password Security, Safe Internet Browsing, VPN Use, Social Engineering Risks, Phishing, Insider Threats, Physical Security, Use of Personal Devices.

up to 10 Employees
$150 $74/year

up to 25 Employees
$337 $169

up to 50 Employees
$600 $299

HIPAA Security & Privacy Training for Staff & Officers

  • Include Cybersecurity Awarenees Training

  • Privacy and Security Training

  • Complete and current

  • 1-hour staff course, 4 modules

  • 3 hr officer course

  • Progress tracked per person

  • Watch as time permits

  • Certificate of completion

up to 10 Employees
$299 $149/year

up to 25 Employees
$675 $299

up to 50 Employees
$1,200 $449

Professional Services
We offer cyber risk management services, including virtual CISO, virtual Privacy Officer, and virtual Compliance Officer.
Ask about our Commander Package to save money with our CyberTeam.
Visit our web site for more information at https://cybercompass.io

* 7 Days Refund allows you to access your account and understand how it works. You are eligible for a refund if you do not utilize the service, such as a risk assessment, policies and procedures, training or vendor compliance management. If you do utilize a service then you are not eligible for a refund.