A commitment to employees, clients and community: The Bonadio Group’s response to COVID-19. View Here

Information Risk Management

We Offer Information Risk Management Solutions in the Following Areas: 

Compliance and Attestation

We ensure the protection of your data and assets through compliance and attestation assessment and reporting. We possess in-depth knowledge and expertise working with GDPR, PCI DSS, HIPAA, HITRUST, SOX 404, SOC and Cloud Compliance.

IT Audit

Our team leverages decades of audit experience working with organizations that must meet various laws, regulations and standards. We’re dedicated to providing you with thorough information technology audits to strengthen your security program.

Penetration Testing

Our team of red team security experts has the experience and capabilities to perform different types of penetration testing that attack your organizations digital infrastructure, just as an attacker would, in order to test your organization’s defenses. Our personalized cyber security threat assessment identifies the various information assets within your company that could be affected by a cyber-attack and the risks that could affect those assets.

General IT Consulting

We provide expert and valuable advice to help your organization understand and effectively manage risks and improve performance. We offer a variety of general consulting services that best fit your unique needs including Blockchain, Information Security Planning, ERP Implementations, vCISO services, privacy reviews & more.

Certified Security Expertise

Our team carries the most up-to-date certifications required to conduct many of today’s intrusion tests. Our Information Risk Management team consists of numerous certified Information Security professionals, including but not limited to the following certification levels:

  • Certified Information Services Auditors (CISA)
  • Authorized CSF Assessors (HITRUST)
  • Qualified Security Assessors (PCI)

& More

Our “& more” philosophy means that we go above and beyond traditional security and compliance practices. Speak to one of our experts today to learn how we can propel your business forward.


  • CISSP  
  • CISM
  • eWPT
  • SSCP
  • Certified Ethical Hacker 
  • CISCO Certified Specialist

Download our FREE HIPAA Risk Assessment Toolkit Today

Latest Articles
John G Roman
Recent Article

Cybersecurity Protections Are Essential, Now More Than Ever

Read More
Jill Martucci
Recent Article

Vendor Management – Remaining Diligent During COVID-19

Read More
Gerald Archibald
Recent Article

Tax-Exempt Human Service Sector – COVID-19 Update

Read More
How Can We Help Move Your Business Forward? 

Contact us to speak with one our industry experts today.