ekko’s approach helps you develop a company-wide integrated program to address your compliance requirements, whether driven by regulatory, legal, or customer related concerns


Implementation, Assessment, and Compliance


HITRUST program scoping and implementation (MYCSF)

Policy and procedure documentation

HITRUST control remediation advisory services and program management


SSAE18 SOC 2 control design 

SOC 2 management report attestation support, scoping and documentation services

SOC 2 Type 1 & 2 program management, remediation services and implementation


Readiness Assessment Report (RAR) implementation

FedRAMP certification program management, implementation and documentation services

System Security Plan (SSP) documentation and CONMON advisory services


HIPAA assessments and program management

HIPAA Security & Privacy control remediation

HIPAA / BAA management consulting

PCI scoping and implementation

Self assessment questionnaire documentation and assistance

Control remediation advice, program management and QSA facilitation

CMMC program baselining and assessment

CMMC program documentation, implementation and 3PAO facilitation

DFARS System Security Plan (SSP) NIST 800-171 documentation

Palo Alto, CA

(650) 353-7920


© 2020 by EKKO Consulting, Inc. 

Privacy Policy