SIMPLIFYING CYBERSECURITY, PRIVACY & COMPLIANCE

At CyberCompass we are dedicated to helping small businesses become compliant with applicable regulations, and securing the sensitive data entrusted to them. We believe all of our data is safer when our small businesses are secure. We know that you can win or lose critical contracts based on your compliance status. We also know that becoming compliant can be expensive and time consuming, especially if you are not a compliance expert. Our Small Business Assisted Packages are designed to help you reach your goals at an affordable price, learn more about what we do and how we can help below.

Assess
Start with a formal risk assessment by a qualified third party.
We identify issues across your organization and perfom appropriate pen-testing.

Correct
Take corretive action in prioritized order.
We provide simple step by step prioritized remediation to harden systems and engage employees. We provide required risk management plan, written information security plan, policies & procedures, training, prioritized technical strategy and guidance.

Inform
Complete cloud platform with reporting, dashboard, secure storage and vendor compliance management. Reports for management, executives, board of directors and investors.

CyberCompass is a cyber risk management consulting and software firm.
We navigate organizations through the complexity of cybersecurity and compliance at half the cost of full-time employees.
We design, create, implement, and maintain information security and compliance programs.
We provide consulting services and a cloud-based workflow automation platform to save our clients over 65% of the time to become and remain cyber resilient and compliant.

Regulations and Standards We Support

  • CMMC 2.0 - (Cybersecurity Maturity Model Certification)

  • CIS 18 - (Center for Internet Security 18 Critical Security Controls)

  • FTC SR - (FTC Safeguards Rule)

  • GDPR - (EU General Data Protection Regulation)

  • HIPAA - (Health Insurance Portability and Accountability Act)

  • HIPAA Audit Protocol - (HHS Audit)

  • ISO 27001 - (Information security, cybersecurity and privacy protection — Information security management systems - Prep for Certification)

  • NIST SP 800-171 - (Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations)

  • NY Reg 500 - (New York Department of Financial Services Reg 500)

  • SOC 2 - (Service Organization Control Type 2 - Prep for Certification)

  • TCPA - (Telecommunications Consumer Protection Act)

  • TPN - (Trusted Partner Network - Motion Picture Association)

  • US State Privacy Laws (California CCPA/CPRA, Texas, Utah, New Hampshire, New Jersey, Delaware, Connectticut, Indiana, Kentucky, Virginia, Tennessee, Iowa, Nebraska, Colorado, Montana, Oregon)


Get started by picking the CyberCompass plan that fits your organization!
We offer Assisted Assessments.
Self-Assessments are not worth doing because you receive no credit from clients, regulators or auditors. So, don't waste your money or time on them.
Our Small Business Assisted solutions include consulting hours to help you answer the assessment correctly, then show you how to address the prioritized issues identified during the assessment. Includes policies & procedures, training, vendor compliance management and resource documents.
We Offer virtual CISO, Privacy and Compliance Officer Services

Everything you need, including professional assistance,
in one simple package at a great self-assessment price to become cyber resilient and compliant.
Guided Security Risk Assessment, Risk Management Plan, P&Ps, Training, plus consulting services

CMMC 2.0, CIS 18, FTC Safeguards Rule, ISO 27001, or TPN

HIPAA

GDPR or US State Privacy

Cybersecurity, Privacy, and Compliance Small Business Assisted Package

HIPAA Small Business Assisted Package

Privacy Small Business Assistance Package

  • Assisted Security Risk Assessment for any two covered regulations

  • Up to 10 hours of professional guidance from the CyberCompass virtual cyber team

  • Meets the requirements of Security Risk Analysis in the CMMC, FTC Safeguards Rule, ISO 27001 (Prep), CIS 18 or TPN plus any privacy assessment

  • Easy to use software

  • Risk report generated at completion

  • Risk Management Plan

  • Prioritized Issues List

  • Tracks and documents mitigation

  • On-demand compliance report

  • Best Practice Policies and Procedures

  • Vendor Compliance Manager

  • Cybersecurity awareness training - Self-paced videos

  • -- Training topics include: Email Security, Malware Identification, Password Security, Safe Internet Browsing, VPN Use, Social Engineering Risks, Phishing, Insider Threats, Physical Security, Use of Personal Devices.

  • -- Progress tracked per person

  • -- Watch as time permits

  • -- Certificate of completion

  • Assisted Security Risk Assessment

  • Meets the requirements of Security Risk Analysis in the HIPAA Security Rule

  • Up to 10 hours of professional guidance from the CyberCompass virtual cyber team

  • Easy to use software

  • Risk adjusted report generated at completion

  • Risk Management Plan

  • Prioritized Issues List

  • Tracks and documents mitigation

  • On-demand compliance report

  • Best Practice Policies and Procedures

  • Vendor Compliance Manager

  • Privacy and Security Training - Self-paced videos

  • -- 1-hour staff course, 4 modules

  • -- 3 hr officer course

  • -- Progress tracked per person

  • -- Watch as time permits

  • -- Certificate of completion

  • Assisted Privacy Risk Assessment for any two privacy regulations

  • Meets the requirements of Risk Assessment in GDPR, CPRA, and other state privacy laws

  • Up to 10 hours of professional guidance from the CyberCompass virtual cyber team

  • Easy to use software

  • Risk adjusted report generated at completion

  • Risk Management Plan

  • Prioritized Issues List

  • Tracks and documents mitigation

  • On-demand compliance report

  • Best Practice Policies and Procedures

  • Vendor Compliance Manager

  • Cybersecurity awareness training

  • - Training topics include: Email Security, Malware Identification, Password Security, Safe Internet Browsing, VPN Use, Social Engineering Risks, Phishing, Insider Threats, Physical Security, Use of Personal Devices.

  • Self-paced videos

  • -- 1-hour staff course, 4 modules

  • -- 3 hr officer course

  • -- Progress tracked per person

  • -- Watch as time permits

  • -- Certificate of completion

up to 10 Employees
$7,500 $6,500/year

up to 25 Employees
$15,000 $13,500/year

up to 50 Employees
$25,000 $22,500/year

up to 10 employees
$5,000 $4,500/year

up to 25 Employees
$10,000 $8,500/year

up to 50 Employees
$15,000 $13,500/year

up to 10 employees
$5,000 $4,500/year

up to 25 Employees
$10,000 $8,500/year

up to 50 Employees
$15,000 $13,500/year

More than 50 employees or need more than two types of assessments?

Cybersecurity Awareness & HIPAA Training

Is your staff leaving you vulnerable?

With 67% of breaches related to employee behavior, appropriate training is vital to your security.
Teach your employees to be vigilant against cyber crime and protect your patients with our affordable on-demand CyberCompass training.
HIPAA Training is Vital to your Patients
Protecting patient information is part of patient safety. 1 in 4 children who had their identity stolen felt the continued repercussions up to 10 years later.

Get started by selecting the plan that fits your organization!

Cybersecurity Awareness Training

  • Privacy and security

  • Complete and current

  • Online courses

  • Progress tracked per person

  • Watch as time permits

  • Certificate of completion

  • Training topics include: Email Security, Malware Identification, Password Security, Safe Internet Browsing, VPN Use, Social Engineering Risks, Phishing, Insider Threats, Physical Security, Use of Personal Devices.

up to 10 Employees
$150 $74/year

up to 25 Employees
$337 $169

up to 50 Employees
$600 $299

HIPAA Security & Privacy Training for Staff & Officers

  • Include Cybersecurity Awarenees Training

  • Privacy and Security Training

  • Complete and current

  • 1-hour staff course, 4 modules

  • 3 hr officer course

  • Progress tracked per person

  • Watch as time permits

  • Certificate of completion

up to 10 Employees
$299 $149/year

up to 25 Employees
$675 $299

up to 50 Employees
$1,200 $449

Professional Services
We offer cyber risk management services, including virtual CISO, virtual Privacy Officer, and virtual Compliance Officer.
Ask about our Commander Package to save money with our CyberTeam.
Visit our web site for more information at https://cybercompass.io