Compliance Standards Risk Advisory (CSRA)
About USCSRA emphasizes a personalized approach, tailoring our services to meet the unique needs of each client. We aim to deliver high-quality outcomes efficiently and cost-effectively. Our commitment to integrity, mastery, proactivity, accountability, collaboration, and leveraging technology underscores our dedication to guiding organizations through the complexities of regulatory compliance and IT risk management.
Some areas of interest to enterprise clients:
01. Regulatory Compliance & Assurance
- System and Organization Controls (SOC) Examinations
Conducting SOC 1 and SOC 2 reports to assess controls relevant to financial reporting and information security. - ISO/IEC 27001:2022 Readiness and Internal Audit
Assisting organizations in implementing and maintaining an effective Information Security Management System aligned with ISO 27001 standards. - HIPAA Readiness Assessments
Providing risk assessments and gap analyses to help organizations comply with HIPAA/HITECH regulations, ensuring the protection of protected health information (PHI).
02. Internal Audit & Risk Management
- Internal Audit Services
Offering assessments in areas such as AI governance, IT general controls (ITGC) risk assessments, and policy development and review to support financial statement audits and policy compliance. - IT SOX 404 Internal Audit
Evaluating the effectiveness of internal controls over financial reporting for publicly traded or pre-IPO companies, in line with the Sarbanes-Oxley Act (SOX) Section 404 requirements.
03. Third-Party & Vendor Risk Management
Assessing how organizations manage vendor relationships through comprehensive vendor assessments and onboarding support, ensuring thorough due diligence.
Book Free Consultation
The Lead Consultants
A Team Of Professionals

Louis Van Der Westhuizen
Head of Compliance: CISA, CIA, CISSP

David Daoud
Industry Analyst
Book Free Consultation