Company Profile

RISCPoint Advisory Group

RISCPoint Advisory Group is a Cleveland, Ohio-based cybersecurity and compliance consulting firm founded in 2018. The company specializes in delivering custom-tailored security and compliance services to organizations ranging from Fortune 10 companies to pre-Series A startups.

With deep technical and operational expertise, RISCPoint helps clients navigate complex security challenges and achieve robust compliance postures.

Get a RISC Assessment
RISCPoint-Shield-Logo
Security Tailored to You

Core Services

"We leverage trust to provide a meaningful impact that creates opportunity and growth."

Public Sector

Our Public Sector services ensure compliance and security for government entities, covering FedRAMP, DOD IL4-IL6, GovRAMP (StateRAMP), TX-RAMP, CMMC (NIST 800-171 & 172), and FISMA (NIST RMF) standards.

View Service

Compliance

Our Compliance services offer robust frameworks to meet industry standards, including SOC, ISO, HITRUST, NIST CSF, and WCAG/Section 508 compliance, supported by our Virtual Compliance Team.

View Service

Privacy

Our Privacy services are designed to protect sensitive data and ensure compliance with regulations such as HIPAA (NIST 800-66), CCPA & CPRA, and GDPR.

View Service

Risk Management

Our Risk Management services offer comprehensive strategies for mitigating threats, including Risk Assessments, HIPAA Business Associate Governance, Third-Party Risk Management, Plan Simulations, BC/DR, Incident Response, and support from our Virtual Executive Teams (vCISO, vISSO, vCTO).

View Service

Cybersecurity

Our Cybersecurity services provide robust protection against threats with Penetration Testing, Red Teaming, Social Engineering, Application Security, Vulnerability Assessments, and Security Engineering.

View Service

Cloud

Our Cloud services offer secure and scalable solutions for AWS, Azure, and GCP environments to enhance your cloud infrastructure's resilience.

View Service
Security Tailored to You

Core Services

"We leverage trust to provide a meaningful impact that creates opportunity and growth."
Compliance
  • SOC assessments
  • ISO 27001, 27017, 27018
  • HITRUST
  • NIST CSF
  • WCAG/Section 508
  • Virtual Compliance Team providing on-demand expertise
Learn More
Public Sector
  • FedRAMP
  • DOD IL4-IL6
  • StateRAMP
  • TX-RAMP
  • CMMC (NIST 800-171 & 172)
  • FISMA (NIST RMF)
Learn More
Cybersecurity
  • Penetration Testing
  • Red Teaming
  • Social Engineering
  • Application Security
  • Vulnerability Assessments
  • Security Engineering
Learn More
Risk Management
  • Risk Assessments
  • HIPAA Business Associate Governance
  • Third-Party Risk Management
  • Plan Simulations (BC/DR, Incident Response)
  • Virtual Executive Teams (vCISO, vISSO, vCTO)
Learn More
Learn More
Cloud
  • Secure and scalable solutions for AWS, Azure, and GCP
  • Cloud infrastructure resilience optimization
Learn More
Our Blueprint, Your Success

Methodology

RISCPoint's methodology emphasizes collaboration, customization, and sustained success:

Identify

Understanding client objectives through collaborative conversations

Understand

Determining the "why" behind objectives to build a sustainable program roadmap

Design

Creating customized programs rather than using standard playbooks

Optimize

Implementing improvements and coordinating with external teams

Sustain

Ensuring long-term success through maintainable programs tailored to each client's team

Core Values

Listen to understand

We listen to **understand** challenges and provide our team the space to create customized solutions that deliver **real value**.

Own the Objective

We take **absolute** ownership of the **objective**, not the task. We encourage constructive feedback and clarity.

Put in the work

To come prepared and confident in the **known** and **unknown**.

Aspire to greatness

Greatness is achieved with **consistency** and **discipline.** Our mindset is key in aspiring to greatness in every interaction with our teammates, partners, and clients.

AWS Partnership

RISCPoint has been recognized by Amazon Web Services (AWS) for its cybersecurity and compliance expertise as an AWS Global Security and Compliance Acceleration Partner. This partnership validates their ability to help clients leverage AWS services for enhanced security posture and compliance with regulatory frameworks.

Case Study:
ACU-Serve's HITRUST CSF Implementation

RISCPoint successfully guided ACU-Serve through the complex process of HITRUST certification, demonstrating their expertise in healthcare compliance and security. Their comprehensive approach included:

  • Performing thorough initial assessments to understand ACU-Serve's specific needs and challenges
  • Developing a strategic roadmap tailored to achieve HITRUST certification efficiently
  • Providing expert guidance on security control implementation and documentation
  • Delivering hands-on assistance throughout the preparation and assessment phases
  • Supporting ACU-Serve through the formal certification process with third-party assessors
  • Establishing sustainable practices for maintaining compliance long-term

This partnership exemplified RISCPoint's methodology of identifying objectives, understanding the "why" behind requirements, designing customized solutions, optimizing security controls, and ensuring sustainable compliance. Through RISCPoint's strategic guidance, ACU-Serve was able to enhance their security posture, successfully achieve HITRUST certification, and demonstrate their commitment to protecting sensitive patient information.

Team of Experts

Team Approach

The RISCPoint team brings their complete selves to work, focusing on excellence without pretension. They build trust through integrity, humility, and a genuine dedication to clients' success. Their approach combines technical expertise with a collaborative spirit, adopting clients' goals and problems as their own.

Work With Us Today
Jake Nix
Founder and Chief Growth Officer
Matt Drewyor
Chief Executive Officer
Tony Bai
Chief Solutions Officer
Chad Gross
EVP, Compliance Services
Devon Calvert
Senior Director, Federal Services
Bennett Warner
Principal Engineer & Head of Penetration Testing

Stay Informed, Stay Secure

Subscribe to our newsletter and get the latest cybersecurity insights, updates, and event invitations delivered straight to your inbox. Join our community and empower your security journey with RISCPoint's expert knowledge.

Thank you! We'll keep you up to date!
Oops! Something went wrong while submitting the form.

Join our newsletter for updates. Terms.