The Security You Need.
The Compliance to Succeed.

We help innovative technology and cloud service providers simplify the path to security and compliance.

LEARN MORE
 

Diversity In Tech

Why we need it, how BARR is leading the charge, and how you can join us.

LEARN MORE
 

How to Scale Your Startup with SOC 2

Join BARR Advisory and Veer Technologies on Oct. 14 at 11 a.m. CST for a discussion on how security and compliance drive business for startups.

LEARN MORE
 

A Simple Introduction to the 18 CIS Controls

Explore the 18 CIS Controls and how you can easily implement them into your cybersecurity program.

LEARN MORE
 

Introducing People & Culture Services

Now offering personalized HR and talent solutions for your growing business.

WATCH VIDEO
LEARN MORE
1
1

Our Approach: Simplify and Customize

We go beyond the compliance checklist and assess all aspects of your organization’s unique environment, identifying risks, areas for improvement and simplifying the processes and controls needed to turn compliance into a strategic asset.

https://www.barradvisory.com/wp-content/themes/salient/css/fonts/svg/arrows_hamburger 2.svg

Plan and Scope

We believe in determining the why before proposing the how and that careful planning is imperative to achieve your business objectives. We simplify complex projects by defining roles, responsibilities
and setting clear expectations
over project scope.

https://www.barradvisory.com/wp-content/themes/salient/css/fonts/svg/basic_sheet_txt .svg

Assess

We take a comprehensive approach toward assessment. By identifying business issues and opportunities at every level, we simplify solutions and turn risks and complex compliance requirements into a competitive advantage for your organization.

https://www.barradvisory.com/wp-content/themes/salient/css/fonts/svg/arrows_circle_check.svg

Report and Comply

Whether we are performing a compliance examination, risk assessment or CISO advisory services, we deliver the highest quality reports. To ensure accuracy, our technical writing team reviews all reports prior to distribution.

https://www.barradvisory.com/wp-content/themes/salient/css/fonts/svg/arrows_clockwise_dashed.svg

Optimize

Our approach enables organizational alignment, integration of business processes and continuous improvement. Our commitment to you extends far beyond our final deliverables. We follow up to ensure our work infuses value in your organization.

Cybersecurity Risk Management, Compliance, and Advisory Services

At BARR, we simplify compliance across multiple regulatory and customer requirements in a wide range of industries including technology, financial services, healthcare and government. Explore our services below.

SOC Examinations

Differentiate your organization by providing your stakeholders with a System and Organization Controls (SOC) report that demonstrates your commitment to confidentiality, integrity and availability. BARR is here to assist you with the following audit reports:

SOC 1

Focuses on controls that are relevant to an audit of your clients’ financial statements.

Learn More

SOC 2 and SOC 3

Reports apply more broadly to operational controls covering security, availability, confidentiality, processing integrity, and/or privacy across a variety of systems.

Learn More

SOC for Cybersecurity

Demonstrates that effective processes and controls are in place to detect, mitigate, and recover from breaches and other security events.

Learn More

Healthcare Compliance

From HIPAA to HITRUST compliance challenges, our service professionals can help you navigate the complex healthcare rules and risks associated with business associates who handle e-PHI.

Learn More

Certification to ISO Standards

ISO 27001, ISO 27017, and ISO 27018 are internationally accepted standards that demonstrate your organization’s commitment to information security risk management. Let us help you with your ISMS.

Learn More

Government Assessments

As an accredited Third-Party Assessment Organization (3PAO), we provide independent assessment services to cloud providers. We follow the ‘do once, use many times’ framework to help organizations streamline complicated government mandates.

Learn More

Payment Card Industry (PCI) Services

If you store, process, or transmit credit card data either as a merchant, processor, or service provider, then the Payment Card Industry Data Security Standard (PCI DSS) applies to you. Our focus is helping your organization achieve PCI compliance.

Learn More

Penetration Testing and Vulnerability Assessments

Whether it’s an Infrastructure as a Service (IaaS), Platform as a Service (PaaS) or Software as a Service (SaaS), our specialists have extensive experience in penetration testing for cloud-based environments.

Learn More

IT Governance Risk and Compliance (GRC) Advisory

BARR Advisory provides governance, risk and compliance (GRC) services to help clients improve risk management, streamline information security processes and reduce cost.

Learn More

Who We Serve

BARR is a trusted cybersecurity advisor to some of the fastest growing cloud service providers (IaaS, PaaS, SaaS) from around the world operating in the most regulated industries.

client
client
client
client
client
client
client
client
client
client
client
client
client
client
client
client
client
client
client
client
client
client
client

We are very impressed with BARR. We felt confident during our SOC 2 audit, knowing that BARR had the right competence and would help us along the way.

ANNA BURMANCOO and Data Protection Officer, 84codes

It’s odd to say that it was a pleasure doing business with an auditor. However, that was definitely our experience with BARR Advisory. We give BARR our highest recommendation.

EDITH HANEYEVP, General Counsel & Compliance Officer, Fogo Data Centers

BARR Advisory ran a very efficient process that used my time in a very efficient way. I would recommend their services to everybody looking for an efficient SOC 2 certification process.

DUSAN OMERCEVICCEO, Cleanshelf, Inc.

The work with BARR Advisory has proven to be an asset to our company and our clients; we are truly appreciative.

DOLLY KRISHNASWAMYGlobal IP Strategist & Security, Alphaserve Technologies

BARR's friendly and professional auditors led us through two audit periods, and helped us affect lasting security measures while increasing company efficiency. We highly recommended them.

JEB BROWNPHD - PRESIDENT, CENTER FOR CLINICAL INFORMATICS

Everyone who met with Brad and his team said they loved spending time with them, which is the weirdest reaction to an auditor interview I’ve ever gotten.

PAUL MURPHYCEO, Clarify, Inc.

BARR Advisory ran a highly structured and transparent process with a clear articulation of what was needed to achieve date-driven milestones. They are the definition of professional, thorough, and high-quality. It also helped enormously to do the readiness report with them first to understand the journey ahead.

ROGER ARNEMANNChief Operating Officer, Nomis Solutions

The audit process is perfectly painless and I truly enjoy working with the team at BARR. We have worked with several auditors from BARR and each one has been organized, clear in their requests and a pleasure to work with. I am looking forward to next year's audit (hard to believe, I know!).

ABBY HORNDirector of Operations, INOC Data Centers

This was the first SOC 2 audit for Mylo, and BARR Advisory made the process very smooth and understandable. We gained a lot of benefit by doing a Readiness Assessment with them first, so that when the audit started, we were well prepared. We are very happy with the content of the report and look forward to working with BARR again.

ANGELA ROBERTSONSecurity and Compliance Director, Mylo

BARR Advisory is a critical component for suggestions and accountability towards continuous improvements in our platform's security and privacy controls.

JAMES METZGERDirector of Compliance, HealthTap Technologies, Inc.

Save Yourself Time By Using Salient

Handling how you manage payments online is very important. Salient is a new innovative and easy to use method of sending & receiving money online. It’s fast, secure and free to sign up.

  • Top Customer Support
  • Most Liked Company
  • Best In Class 2016
  • Friendliest Group
  • Innovative Brand
BARR Belong Foundation logo

It’s BARR Belong Foundation Month! Find Out What BARR is Doing to Give Back to Our Communities

| Company Culture, News | No Comments

This October marks BARR Advisory’s first-ever BARR Belong Foundation Month. The month is full of opportunities for associates to give back to their communities, concluding with the company’s fourth annual…

Center for Internet Security (CIS) logo

Overview of CIS Controls 1-6 and How You Can Implement Them

| CISO, Compliance Updates, Cyber Hygiene, Data Privacy, News, Security | No Comments

The Center for Internet Security (CIS) recently released version eight of its controls, consolidating the previous 20 controls into 18 (more on this here). Let’s dive into the first six…

BARR was recently featured on Threat Technology's blog.

BARR Advisory Takes a Human First Approach to Greater Automation and Collaboration in Cybersecurity

| Cloud Computing, Data Privacy, SaaS, Security, Working Remotely | No Comments

Original article written and published by cybersecurity news publication Threat.Technology on September 2, 2021, based on an interview with Brad Thies, founder and president of BARR. BARR Advisory specializes in…

Center for Internet Security (CIS) logo

What You Need to Know About the Newly Released 18 Center for Internet Security (CIS) Controls

| CISO, Compliance Updates, Data Privacy, News, Security | No Comments

The Center for Internet Security (CIS) recently released version eight of its controls, consolidating the previous 20 controls into 18. This latest list is organized by activity, rather than by…

View All Posts
client
client
client
client
client
client

Contact Us for a Free Consultation

We’re here to help you! Speak with a BARR specialist about your security and compliance needs.