Cybersecurity Compliance

Developing and maintaining a cyber risk management program is only part of the effort needed to protect an organization from potential data breaches. Companies must also ensure their cybersecurity compliance operations are up to date. Systems and processes need to comply with an increasingly stringent set of regulations and security requirements.

Members of the Elliott Davis Cybersecurity compliance practice take a holistic view of clients’ cybersecurity posture, helping them understand the relevant privacy laws and regulatory requirements. They then implement compliance-conforming systems and controls that mitigate internal and external vulnerabilities.


Elliott Davis works with clients to:

  • Assess the overall security status of their networks, information and systems, particularly as it relates to regulatory compliance.
  • Establish a governance structure to drive accountability for the overall cybersecurity program.
  • Monitor information systems for a breach or attempted breach of security.
  • Implement formal procedures for identifying and responding to breaches, and notifying regulators and affected individuals in a timely manner
  • Conduct periodic testing to ensure ongoing regulatory compliance.


  • FFIEC Compliance
  • HIPAA Risk Assessment
  • GDPR Compliance
  • HITRUST Assessment