Ascent Consulting Services, LLC

Services

Services

Areas of Expertise

Ascent Consulting provides solutions to the varied risk management and compliance challenges you face.  Ascent Consulting’s core services are described below, but please reach out if you don’t see your specific challenge described so we can talk more about it.

Risk Management Strategy & Risk Assessment

What’s your current risk profile?  Is it in line with your risk appetite?  By implementing a comprehensive risk management framework and conducting targeted risk assessments, I can mature the overall risk posture of your organization to reduce the likelihood of surprises, exposure, and non-compliance.

Third-Party Oversight

As services and technologies are outsourced to third parties, the risk profile shifts, but accountability doesn’t. Implementing and maintaining a third-party oversight program is critical to knowing whether your vendors meet client expectations and compliance requirements.

IT Compliance

I can conduct an analysis against your desired control framework or compliance requirement to evaluate gaps in your current state, develop remediation plans, implement tailored processes and controls to meet the framework / requirement, and prepare the business for upcoming compliance audits.

Due Diligence Documentation

Are you bogged down by compliance requests and bespoke questionnaires from clients and regulators?  I can implement a standardized due diligence package that efficiently and effectively communicates your security and compliance posture, thereby reducing time spent on ad hoc requests and questionnaires.

Contract Management

You should sign client and vendor contracts with confidence and know what’s in them.  I can negotiate security, risk, and audit terms with your clients and vendors that align to your strategy and satisfy applicable requirements.  After contract sign, I can implement measures to maintain ongoing compliance.

Process and Control Development 

Processes and controls evolve over time due to changes in the business, technology, regulations, and risk profile.  I can work with you to identify and analyze the current state of processes and controls versus the desired state and develop policies, processes, and controls to achieve your desired state.