About UsCyber-ThreatComplianceEnterpriseConsultingGSA ScheduleCareersContact

An independent audit of the control mechanisms in place to ensure the confidentiality, integrity, and availability of the information system is crucial to ensure compliance is maintained throughout the operational lifecycle. Independent audits ensure that the processes, configurations, and controls documented during the development and implementation of the information system are being followed and are effective. KCG’s security audit services seek to identify vulnerabilities, policy violations, process and documentation gaps, and security control effectiveness within the organization prior to a formal Inspector General or Oversight audit is performed.

KCG’s service offerings in Security Audit services include:
  • Development of the Security Audit Test plan for the enterprise or standalone information system
  • Technical vulnerability assessments of the information system
  • Process and policy reviews for compliance with overarching policies or architectural requirements
  • Processes for executing security audit to include Test Readiness Reviews, daily stand-up and out-briefings, and formal report development
  • Documentation of audit findings including executive summary and detailed test findings in final Test Report