Certified STAR Auditors

Certified STAR Auditors

Certified STAR Auditors

Certified Auditors for CSA STAR Certification

Certified Auditors
Contact Info

BSI Global HQ
389 Chiswick High Road London W4 4AL United Kingdom [email protected] +44 20 8996 9000

BSI Americas
12110 Sunset Hills Road, Suite 200 Reston, VA 20190-5902 [email protected] Telephone: 1.800.862.4977

International offices
BSI has 58 offices serving over 80,000 clients in 150 countries To find the office closest to you visit: http://www.bsigroup.com/

Coalfire ISO HQ
12735 Morris Road, Suite 250 Alpharetta, GA 30004
(P) 303.554.6333

As the certification arm of Coalfire, Coalfire ISO provides audit and certification services to public and private sector organizations, adhering to the applicable requirements of both ISO/IEC 17021-1:2015 and ISO/IEC 27006:2015. Coalfire ISO is an accredited certification body under both the ANSI National Accreditation Board (ANAB) and the United Kingdom Accreditation Service (UKAS). For more information, please visit https://www.coalfireiso.com

ControlCase is a global provider of technology-driven compliance and security solutions. ControlCase is committed to partnering with clients to develop strategic information security and compliance programs that are simplified, cost effective and comprehensive in both on-premise and cloud environments. ControlCase provides the best experts, customer experience and technology for regulations including PCI DSS, GDPR, SOC1, SOC2, SOC3, HIPAA/HITRUST™, ISO 27001/2, SSAE16, PIPEDA, FERC/NERC, Sarbanes Oxley (SOX), GLBA, CoBIT, BITS FISAP and EI3PA.

ControlCase
USA +1.703.483.6383
Canada +1.416.900.1272
Europe, Middle East and Africa +44.2035145389
India +91.7506610917
Asia Pacific +66-21056164
Website: https://controlcase.com
Email: [email protected]

Driven by our purpose of safeguarding life, property and the environment, DNV GL enables organizations to advance the safety and sustainability of their business. DNV GL is a leading provider of classification, certification, verification and training services. With our origins stretching back to 1864, our reach today is global. Operating in more than 100 countries, our 14,000 professionals are dedicated to helping our customers make the world safer, smarter and greener.

As a world-leading certification body, DNV GL helps businesses assure the performance of their organizations, products, people, facilities and supply chains through certification, verification, assessment, and training services. We also deliver deep insight and pragmatic support to major companies enabling them to build effective sustainability strategies. Partnering with our customers, we build sustainable business performance and create stakeholder trust.

DNV GL HQ
Veritasveien 1 1363
Høvik Norway
Telephone: +47 67 57 99 00

To find the office closest to you visit https://www.dnvgl.com/cn or contact us at [email protected].

EY CertifyPoint HQ
Antonio Vivaldistraat 150 1083 HP Amsterdam The Netherlands [email protected]http://www.ey.com/certifypoint

International offices
Founded in 2002, EY CertifyPoint is an accredited independent and impartial certification institute with experienced auditors all over the world certifying some of the top international organizations. Being related to the global EY organization, EY CertifyPoint is able to provide you with a local contact person in nearly every country world-wide. For more information, please visit http://www.ey.com/certifypoint.

When information security systems are not properly managed and maintained, organisations run the risk of sustaining serious financial and reputational losses. Ensuring your organisation has the right controls in place to reduce the risk of serious data security threats and avoid any system weaknesses from being exploited is crucial.

Lloyd’s Register has been at the forefront of standards development and involved in Information Security Management System (ISMS) assessment for many years. Our high-profile clients in the finance, telecoms, software, internet, consultancy, justice and government sectors trust Lloyd’s Register to deliver high quality, consistent and impartial assessments with the full back-up of a highly dedicated support package.

Our assessors are experts qualified in information security and other aspects of IT, whose objective view will give you confidence in your own security measures as judged against best industry practice.

For more information on our wide range of services, or to make an enquiry, visit www.lr.org

Nixu Corporation is a cybersecurity company. We work to improve our clients’ cybersecurity in solution areas of Corporate IT, Digital Business and Industrial Internet. Our clients trust Nixu in projects where developing, implementing or assessing of information security is a must. We ensure the confidentiality of our clients' data, business continuity and ease-of-access to digital services through planning and mitigation of cybersecurity risks.

CONTACT INFORMATION:
Phone number: +358 9 478 1011
E-mail: [email protected]

Blog: http://www.nixu.com/blog
Twitter: @nixutigerteam

NSF International is an independent, global organization that protects human health by facilitating the development of public health and safety standards, and providing certification and testing services.

Our cybersecurity audit services can help you leverage best practices to reduce organizational risk, improve business performance, successfully address customer expectations and meet or exceed corporate and organizational objectives.

PricewaterhouseCoopers Certification BV (hereafter: PwCC), part of the worldwide PwC network is a legal entity accredited for verification and certification services globally. PwCC is focused on building digital trust, by providing certification services for (Cloud) information security management (ISO27000 series and CSA STAR), business continuity (ISO22301), quality management (ISO9001) and information technology service management (ISO20000).

PwCC is committed to delivering our certification engagements to the highest quality standards. As such, PwCC is accredited to issue ISO27001, ISO9001and ISO22301 certificates by the Dutch accreditation body ‘Raad voor Accreditatie’. Our certification engagements are conducted according to the ISO17021-1 standard for certification of management systems, a standardised approach used by all accredited certification bodies. The actual overview of standards PwCC is accredited for can be found on the website of the ‘Raad voor Accreditatie’.

Organizations in a business-to-business environment are increasingly subject to requirements from customers, regulators and other stakeholders to demonstrate that information security, quality control and business continuity is up to standard from both a management system and controls perspective. PwCC is one of the few organisations that is capable of leveraging synergies resulting from overlaps between attestation frameworks (e.g. SOC1, SOC2, IRAP, HIPAA, GBLA, BSI C5, FDA, GXP, TISAX), management systems and different territories.

QSCert, spol. s r.o.
E. P. Voljanského 1, 960 01 Zvolen
https://maps.google.com/?q=E.+P.+Voljansk%C3%A9ho+1,+960+01+Zvolen&entry=gmail&source=g
Tel: 045 - 54 00 717
Tel/Fax: 045 - 54 00 718
Phone number: 0905 - 977 200
E-mail: [email protected]

QSCert® is an international Certification Body based in Prague (Czech Republic). Its core business is certification of management systems according to several international standards. QSCert® has established the net of branch offices all over the world. QSCert® is accredited by the Czech Accreditation Institute. QSCert® differs from other certification bodies mainly by pragmatic approach to an audit without emphasis on bureaucracy. A quality management system which QSCert® requires from its clients is established also in QSCert®. QSCert® audit gives added value to the client not only by examining the compliance with the standard requirements but also by suggesting opportunities for improvement of the management system. QSCert auditors are people who worked as quality managers or consultants in the past – they are able to understand certification audits from the auditee point of view. It enables them to conduct audits in correct and pragmatic way.

Schellman & Company, LLC HQ
4010 W Boy Scout Boulevard, Suite 600
Tampa, FL 33607
Telephone: 1.866.254.0000 Outside of the United States, please dial: +1.973.854.4684

We are setting the pace and blazing new trails. We are the only company in the world capable of providing our clients the rare opportunity to achieve multiple compliance objectives through a single independent assessor — using experienced teams dedicated to delivering the highest quality.

For more information visit www.schellmanco.com

SGS HQ
1 Place des Alpes P.O. Box 2152 Geneva, 1211 Switzerland

SGS Taiwan (East Asia HQ)
4F, No.125, Wu Kung Road, New Taipei Industrial District, New Taipei City, 24886 Taiwan (R.O.C.)

International offices
SGS has 1,400 offices serving over 120,000 clients certification services in 150 countries. To find the office closest to you visit: http://www.sgs.com/

Certification Competence Center
TÜV AUSTRIA Deutschland GmbH (TAD)
Tel: +49 (0)711 7223360140
Fax: +49 (0)711 7223360149
Internet: www.tuv-ad.de
E-Mail: [email protected]
Falkenweg 1 D- 70794 Filderstadt

The TÜV AUSTRIA Deutschland GmbH (TAD) represents the offical Certification-Office of the TÜV AUSTRA GROUP concerning the certification of management-systems for IT-Security like ISO 27001 or CSA STAR. The TÜV AUSTRIA Group is an international group of companies with branches in more than 40 countries and with 1,400 employees worldwide. Services range from testing elevators and pressure equipment, plant safety, training & further education, medical devices, electric engineering, environmental protection, IT security, loss adjustment, certifications, calibrations, technical due diligence, legal compliance checks, and product testing through to the testing of stage and photovoltaic systems as well as wind turbines.

Certified Auditors for CSA STAR Attestation

Certified Auditors
Contact Info

Accedere is a global provider of Assurance services for cybersecurity compliance. Accedere is a Colorado CPA firm registered with PCAOB with focus on Cloud Security and Privacy. Accedere helps clients in evaluating the much needed Cyber Governance Maturity as cyber risk is the 3rd biggest risk of doing business today.

Data Security and Privacy are increasing challenges in today’s cloud-based environments. Accedere provides the required expertise, customer experience for Cloud Security Assessments, Audits, Privacy Compliance. SOC1, SOC2, SOC3, reports are our major focus area. Accedere has audited multiple organizations both large and SMB in the cloud space for the past several years and has exceptional capabilities in this space. Accedere helps organizations achieve Level-2 and 3 STAR compliance.

The cloud assurance business is led by Ashwin Chaudhary who is an MBA, CPA and has certifications CCSK, CISSP, CISA, CISM, CRISC, CGEIT, ISO27001LA. For more details on how we can help please contact us [email protected], www.accedere.io.

Data Security and Privacy are increasing challenges in today’s cloud-based environments. Accedere provides the required expertise, customer experience for Cloud Security Assessments, Audits, Privacy Compliance. SOC1, SOC2, SOC3, reports are our major focus area. Accedere has audited multiple organizations both large and SMB in the cloud space for the past several years and has exceptional capabilities in this space. Accedere helps organizations achieve Level-2 and 3 STAR compliance.

The cloud assurance business is led by Ashwin Chaudhary who is an MBA, CPA and has certifications CCSK, CISSP, CISA, CISM, CRISC, CGEIT, ISO27001LA. For more details on how we can help please contact us [email protected], www.accedere.io.

Coalfire is the trusted leader in cybersecurity risk management and compliance services. Coalfire integrates advisory and technical assessments and recommendations to the corporate directors, executives, boards, and IT organizations for global brands and organizations in the technology, cloud, healthcare, retail, payments, and financial industries. Coalfire's approach addresses each businesses' specific vulnerability challenges, developing a long-term strategy to prevent security breaches and data theft. Coalfire provides advisory and assessment services for cyber security and compliance in DoD SRG, FISMA/FedRAMP, HIPAA/HITRUST, PCI DSS, PCI PA-DSS, ISO 27001, SOC and technical testing services such as penetration testing, social engineering and forensics. Coalfire has offices throughout the United States and Europe.

KPMG LLP is an audit, tax and advisory services firm that specializes in delivering business, technical, regulatory/tax, assurance, security, and management guidance to clients considering the cloud.

PricewaterhouseCoopers Certification BV (hereafter: PwCC), part of the worldwide PwC network is a legal entity accredited for verification and certification services globally. PwCC is focused on building digital trust, by providing certification services for (Cloud) information security management (ISO27000 series and CSA STAR), business continuity (ISO22301), quality management (ISO9001) and information technology service management (ISO20000).

PwCC is committed to delivering our certification engagements to the highest quality standards. As such, PwCC is accredited to issue ISO27001, ISO9001and ISO22301 certificates by the Dutch accreditation body ‘Raad voor Accreditatie’. Our certification engagements are conducted according to the ISO17021-1 standard for certification of management systems, a standardised approach used by all accredited certification bodies. The actual overview of standards PwCC is accredited for can be found on the website of the ‘Raad voor Accreditatie’.

Organizations in a business-to-business environment are increasingly subject to requirements from customers, regulators and other stakeholders to demonstrate that information security, quality control and business continuity is up to standard from both a management system and controls perspective. PwCC is one of the few organisations that is capable of leveraging synergies resulting from overlaps between attestation frameworks (e.g. SOC1, SOC2, IRAP, HIPAA, GBLA, BSI C5, FDA, GXP, TISAX), management systems and different territories.

Schellman & Company, LLC HQ
4010 W Boy Scout Boulevard, Suite 600
Tampa, FL 33607
Telephone: 1.866.254.0000 Outside of the United States, please dial: +1.973.854.4684

We are setting the pace and blazing new trails. We are the only company in the world capable of providing our clients the rare opportunity to achieve multiple compliance objectives through a single independent assessor — using experienced teams dedicated to delivering the highest quality.

For more information visit www.schellmanco.com

Weaver’s IT Advisory Services focuses on delivering performance-enhancing consultation that simultaneously addresses IT and business agendas. We work directly with CIOs and others to create a more risk-aware, effective IT organization that can nimbly drive process efficiencies throughout companies and better support and deliver transformational business change. From cloud computing to mobile payment information, data integrity and information security have never been more crucial. With a range of specialized IT advisory services, Weaver helps organizations distinguish IT as the strategic advantage companies need to succeed in the age of big data.

Founded in 1950, Weaver currently has 500+ employees and offices in eight cities across the United States. Weaver is ranked the largest independent accounting firm in the Southwest by Accounting Today magazine. The firm is also ranked the 38th largest firm in the United States and a ‘2015 Best of the Best Firm to Watch’ by INSIDE Public Accounting. Weaver serves a broad range of clients including public and private national and international companies, nonprofit organizations and government entities. In addition to traditional assurance and tax services, Weaver also provides numerous advisory services, including risk advisory, transaction advisory, IT advisory, energy compliance and consulting, forensics and litigation, international tax, property tax, state and local tax, and wealth strategies services. Learn more at http://www.weaver.com.

Certified Auditors for CSA C-STAR Assessment

Certified Auditors
Contact Info

CEPREI HQ No.110 Dongguan Zhuang RD. Guangzhou, P.R.China Telephone: +86-20-87236606 [email protected] As a leading provider of management system certification body in China and the first Executive Member of CSA in Asia, CEPREI Certification Body Provides information security related professional services such as ISO20000 & ISO27001 certification, risk assessment, IT governance, Business Continuity Management etc. Also, newly launched C-STAR assessment scheme is provided to help our client fully understand cloud security issues they’re facing and how to put the appropriate controls in place. CEPREI Certification Body with unique legal status is a registrar authorized and accredited by national department and/or accreditation bodies home and abroad, to conduct third-party certification. It grew out of Inspection Division of China Electronic Product Reliability and Environmental Research Institute (the Fifth Electronic Institute) established in 1956, which is the first scientific research organization at national level engaged in product quality and reliability research in China. As early as 1979, CEPREI Certification Body introduced the concept of Certification into China. Ever since then CEPREI has issued more than ten thousand certificates of various types to its clients. It sets foot in all administrative regions in mainland China and other countries and regions including Hongkong Special Administration Region, Taiwan, USA, German, Holland, Denmark, Australia, Japan, Korea, Malaysia, Thailand and Singapore. As one of the most authoritative accreditation bodies in the world, America National Standard Institute-Registrar Accreditation Board (ANAB) has authorized CEPREI Certification Body to issue ISO9000, ISO14000 and ISO27001 certificates with ANAB logo since 2001. The certificate will be helpful for your products and services in improving reputation and enhancing competitiveness home and abroad.