KirkpatrickPrice

Think your AWS environment is secure? Let’s prove it.   Misconfigurations remain a top driver of cloud incidents. Overly permissive IAM, public S3 buckets, and unencrypted storage are common culprits. A Secure AWS Scan surfaces hidden issues and prioritizes fixes so your team can move quickly and confidently.  ✔ Detect IAM policy weaknesses, exposed services, and encryption gaps.  ✔ Get a tailored report with recommendations from cloud security experts. Sign up and start your free scan today! 👉 https://lnkd.in/eBqT5zUs #CloudSecurity #AWS #CyberRisk #Compliance #RiskManagement 

Congratulations to Christopher Ciero, D.I.A., CISSP, on earning his ISO 42001 Lead Auditor Certification! 🎉 This achievement strengthens Chris’s approach to AI audits with practical techniques for data governance, model documentation, bias and performance monitoring, drift detection, and MLOps security. Chris continues to demonstrate his dedication to clients by delivering clear readiness assessments, tailored remediation plans, and templates that seamlessly integrate AI governance with existing ISMS and SOC 2 controls. 

Get a clearer view of your GCP security Posture! Run our free GCP Scan to see how your configuration compares to CIS Benchmarks and the issues we most commonly find in real audits. Your report includes clear findings and a video showing how to fix each one. If you have questions about your results, our team is here to help! Try it out today: https://lnkd.in/gNb49ADv

Congratulations to Randstad Enterprise on successfully completing your SOC 2 Type II audit! 🎉 You have not only demonstrated your commitment to data security and client confidence, but you have also ensured that you meet the highest levels of security. We are grateful to be your partners in compliance! Way to go!

Congratulations to Jake Guyer on passing the Practical Network Penetration Tester (PNPT) certification exam! 🎉   This certification strengthens Jake’s ability to document findings and communicate impact effectively. The skills gained through this exam will help produce accurate, actionable reports and clear remediation guidance, as the certification trains testers to deliver professional-grade documentation.     Jake continues to expand his knowledge to provide a realistic view of each client’s security posture, giving both himself and his clients the confidence that engagements are conducted with methodology & professionalism, aligned with industry best practices.

Audits are hard, but at KirkpatrickPrice, we believe that your audit should be worth it. One of the biggest challenges clients face is communication. That’s why we created the Online Audit Manager - to remove the second-guessing and confusion from your audit process. If this resonates with you, contact us to get started on your next audit! #CyberSecurity #OnlineAuditManager #SOC #HIPAA #PCI #NIST #OAM 

The Greater Kansas City Chapter ISACA Webinar is 1 week away! Join Mark Hinely, JD, GLEG, CIPP/US, CIPM next Thursday as he dives into evaluating vendors, tightening contract protections, & staying ahead of vendor issues before they spiral. 📅 January 22nd, 2026 🕛 12:00 PM – 1:00 PM (CT) 🎙️ Beyond The Breach: Mastering Vendor Risk Management when AI Raises the Stakes Register here to join us: https://cvent.me/dmDnZG

Sometimes the best finds come from slowing down and asking, “what’s really happening here?” While reviewing how a web application responded to user input, KP’s Senior Penetration Tester, Brian Lowe, noticed something subtle, but it was just enough to warrant a closer look. Instead of relying only on automated tools, he crafted a custom payload by hand. That extra step revealed a cross-site scripting (XSS) vulnerability that scanners had missed. It was a textbook example of why manual testing still matters. Automation can catch a lot, but it’s the human curiosity and intuition that often uncover the real risks. Great testing isn’t just about tools; it’s about testers who know when to dig deeper. Our pen testers are the hackers you WANT to meet. What’s the most surprising thing you’ve found through manual testing? On deck is Stu Skove sharing how he handled a misidentified vulnerability.   

Misconfigurations cause most cloud incidents. Are you protected?   AWS flexibility can lead to configuration drift across EC2, S3, IAM, and networking. Standardize against industry best practices (CIS, NIST, AWS) to harden your environment and reduce audit findings.   Get curated guidance to prevent misconfigurations and align controls across accounts at Explore.Kirkpatrickprice today! https://lnkd.in/g3z8cH9M #AWSCompliance #CloudSecurity #CyberRisk #DevSecOps

We’re excited to share that Mark Hinely, JD, GLEG, CIPP/US, CIPM, will be speaking on behalf of KirkpatrickPrice at the Greater Kansas City Chapter ISACA webinar! 📅 January 22nd, 2026 🕛 12:00 PM – 1:00 PM (CT) 🎙️ Beyond The Breach: Mastering Vendor Risk Management when AI Raises the Stakes From data breaches to compliance nightmares, third-party relationships can turn into existential threats overnight. Now, AI is pouring gasoline on that fire, introducing risks we're only beginning to understand. Mark Hinely takes away the confusion and delivers practical, proven approaches for evaluating vendors, tightening contract protections, and staying ahead of vendor issues before they spiral. You don't want to miss this event! Register here to join us: https://cvent.me/dmDnZG